 Ikyuao
join:2007-02-26
Wichita, KS
 ·Cox HSI
| You can take control of your TCP with... ...Flexible iptables firewall that allow you take control of TCP flags that you can put drops on TCP RST that allows you take control of TCP flags back so you will get get faster speeds back by dropping TCP RST away and you get clean flows of TCP to your computer. Only linux have iptables or ip6tables firewall available.
--
64K TCP WIN is officially dead for long high latency fat network connection across internet. |
|
|
|
 funchordsHelloPremium,MVM
join:2001-03-11
Yarmouth Port, MA
kudos:5 | said by Ikyuao:...Flexible iptables firewall that allow you take control of TCP flags that you can put drops on TCP RST that allows you take control of TCP flags back so you will get get faster speeds back by dropping TCP RST away and you get clean flows of TCP to your computer. Only linux have iptables or ip6tables firewall available. Both ends of any P2P connection would have to implement this, and the functionality you'd lose is important functionality. (TCP RST has a legitimate use!)
Ultimately, this hack gets reported every 3-4 months or so and it looks like it works because peers don't disappear anymore -- but instead of disappearing, you have orphaned peers on dead connections.
--
Robb Topolski -= funchords.com =- Hillsboro, Oregon
More features, more fun, Join BroadbandReports.com, it's free...
|
|
Ikyuao
join:2007-02-26
Wichita, KS Reviews:
·Cox HSI
| said by funchords:said by Ikyuao:...Flexible iptables firewall that allow you take control of TCP flags that you can put drops on TCP RST that allows you take control of TCP flags back so you will get get faster speeds back by dropping TCP RST away and you get clean flows of TCP to your computer. Only linux have iptables or ip6tables firewall available. Both ends of any P2P connection would have to implement this, and the functionality you'd lose is important functionality. (TCP RST has a legitimate use!) Ultimately, this hack gets reported every 3-4 months or so and it looks like it works because peers don't disappear anymore -- but instead of disappearing, you have orphaned peers on dead connections. I don't lose any functionality so P2P application works very well while my linux iptables firewall filtering TCP RST out that means I have right to take control of type of TCP flags. No matter if cable company keeps sending you a TCP RST to abort your P2P connection if using TCP but instead, If your P2P uses UDP then that will not be affected by TCP throttling issues.
--
64K TCP WIN is officially dead for long high latency fat network connection across internet. |
|
funchordsHelloPremium,MVM
join:2001-03-11
Yarmouth Port, MA
kudos:5 | said by Ikyuao:I don't lose any functionality so P2P application works very well while my linux iptables firewall filtering TCP RST out that means I have right to take control of type of TCP flags. No matter if cable company keeps sending you a TCP RST to abort your P2P connection ... I agree you have the right, but it's useless. You're actually harming your own performance.
The ISPs are sending the forged RSTs to both sides of the conversation. If only your side ignores them, while your peers obey them, then you're left with useless half-open sockets that won't transport data. Your client will mistakenly think you're still connection but the peer isn't responding to you. That client is taking memory and CPU power and a slot in the peer list that an actually connected peer could occupy.
For a RST hack to work, a large fraction of the P2P community would have to adopt it -- which means it would have to work on Windows. It would work at a low level (like a firewall or a virus scanner). This isn't the right project for P2P apps that work on the application level. And if it malfunctioned or caused TCP RSTs to fail their legitimate purposes, it probably would get treated as malware.
--
Robb Topolski -= funchords.com =- Hillsboro, Oregon
More features, more fun, Join BroadbandReports.com, it's free...
|
|
Ikyuao
join:2007-02-26
Wichita, KS Reviews:
·Cox HSI
1 edit | said by funchords:said by Ikyuao:I don't lose any functionality so P2P application works very well while my linux iptables firewall filtering TCP RST out that means I have right to take control of type of TCP flags. No matter if cable company keeps sending you a TCP RST to abort your P2P connection ... I agree you have the right, but it's useless. You're actually harming your own performance. The ISPs are sending the forged RSTs to both sides of the conversation. If only your side ignores them, while your peers obey them, then you're left with useless half-open sockets that won't transport data. Your client will mistakenly think you're still connection but the peer isn't responding to you. That client is taking memory and CPU power and a slot in the peer list that an actually connected peer could occupy. For a RST hack to work, a large fraction of the P2P community would have to adopt it -- which means it would have to work on Windows. It would work at a low level (like a firewall or a virus scanner). This isn't the right project for P2P apps that work on the application level. And if it malfunctioned or caused TCP RSTs to fail their legitimate purposes, it probably would get treated as malware. My peers are obeying directly to my firewall decisions. My firewall just filtering reset out so my peers have nothing do with tcp rst... and that won't happen to harming my own performance. TCP RST can destroys TCP established connection. TCP RST really rudely to destroying TCP established connection...
--
64K TCP WIN is officially dead for long high latency fat network connection across internet. |
|
funchordsHelloPremium,MVM
join:2001-03-11
Yarmouth Port, MA
kudos:5 | Good grief. |
|
Ikyuao
join:2007-02-26
Wichita, KS Reviews:
·Cox HSI
| I've added source port of ingoing and outgoing of TCP RST packets be dropping out on top of dest. port so I get bittorrent swarm speeds improved. So what do you think dude? Do you mind I'll send you a TCP RST packet to you so you won't have to access net LOL.
--
64K TCP WIN is officially dead for long high latency fat network connection across internet. |
|
funchordsHelloPremium,MVM
join:2001-03-11
Yarmouth Port, MA
kudos:5 | Dude,
NOTHING you can do to your firewall will affect the fact that THE OTHER END OF A PEER CONNECTION WILL DROP WHEN IT RECEIVES THE FORGED RESET PACKET. That's it -- it's over for that connection. Your client doesn't drop it, so it still shows up in your client as a good connection -- but it can't carry data.
You are experiencing the networking equivalent of the placebo effect.
But, if it works, enjoy it.
Robb
--
Robb Topolski -= funchords.com =- Hillsboro, Oregon
More features, more fun, Join BroadbandReports.com, it's free...
|
|
