Hosting Provided By

Re: [Design] address inertia

From: Henry Spencer <henry(at)spsystems.net>
Date: Tue Feb 18 2003 - 18:26:16 EST

On Tue, 18 Feb 2003, Jim Carter wrote:
> > In the wonderful world of IPsec, it's not that simple. How can you send

Yes, you can do things like rate limiting which will help greatly (until your server crashes twice in fast succession... :-(). However, given that any solution based on error reports rebuilds the connection only after traffic has tried to get through, and given that rebuilding takes a bit of time, it really is better to save this as a fallback method.

Address inertia lets you rebuild right away after a crash, rather than waiting for error reports. It's less than perfect, so an error-report strategy is desirable to catch the ones that fall through the cracks, but the details of that strategy are a lot less crucial if it handles only exceptional cases.

At one point, when I was still working for FreeS/WAN, we had an Internet Draft, intended to be an Informational RFC, that addressed a bunch of these issues. Unfortunately, *it* seems to have fallen through the cracks since...

                                                          Henry Spencer
                                                       henry@spsystems.net

_______________________________________________

Design mailing list
Design@lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/design Received on Tue Feb 18 19:18:10 2003

This message: [ Message body ]
Next message: Jim Carter: "Re: [Design] address inertia"
Previous message: ·ÒëÈÈÏß010-82561122: "[Design] ·ÒëÈÈÏß: 010-82561122 82561123 ÌØ¼Û£ºÓ¢ÒëÖÐ£º90Ôª ÖÐÒëÓ¢£º100Ôª"
In reply to: Jim Carter: "Re: [Design] address inertia"
In reply to Henry Spencer: "Re: [Design] address inertia"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 12:59:32 EDT