Uploaded image for project: 'LWIP based TCP/IP'
  1. LWIP based TCP/IP
  2. PSLWIP-535

Support limiting TCP/RST & ICMP/Unreachable responses

          Details

          • Type: New Feature
          • Status: Closed
          • Priority: Minor
          • Resolution: Fixed
          • Affects Version/s: None
          • Fix Version/s: V5.3.0.5, V5.4.0.1, V5.4.1.0
          • Labels:
            None
          • Account:
            SPC TCP_IP (SPCTCPIP)

            Description

            The current implementation will generate a TCP/RST and/or ICMP Unreachable for each received TCP/UDP frame addressed to a closed port. This contributes substantial cpu load in network load/attack scenarios and will also further increase the network load due to backscatter effects.

            To improve the behavior under such condition, a budget mechanism is provided which will limit the amout of these error responses to a resonable frequency. The mechanism has to be explicitly enabled in the firmware by calling "LwIP_EnableErrorBudget()"

              Attachments

                Expenses

                  Activity

                    Status Description

                      People

                      • Reporter:
                        AMesser Andreas Messer
                      • Votes:
                        0 Vote for this issue
                        Watchers:
                        0 Start watching this issue

                        Dates

                        • Created:
                          Updated:
                          Resolved: