Szechuan Death wrote: > Okay, misc: As near as I can tell (been talking with Alexey offlist),
Okay, misc, I'm a dumbass. My Russian is really remarkably rusty. Alexey wants to prevent some benighted ISP from counting hosts behind a NAT device; the problem is that they're wise to the trick of setting TTLs to 255 and block packets with that TTL. There is also a host on the NATted network with some ridiculously large default TTL, something like 245. I have recommended setting the minimum TTL to a lesser value, say 245-254. However, on the off chance that this doesn't work, a revised question; is there any means in pf of "setting" TTL values in outbound packets directly to a value - e.g. "128", or whatever - not just bringing them up to a minimum? If there isn't, I believe that Alexey has offered to write a patch, if he has time to do so. >;-> Sorry for the miscommunication. -- (c) 2005 Unscathed Haze via Central Plexus <[EMAIL PROTECTED]> I am Chaos. I am alive, and I tell you that you are Free. -Eris Big Brother is watching you. Learn to become Invisible. |-------- Your message must be this wide to ride the Internet. --------|
