<< | Thread Index | >> ]    [ << | Date Index | >> ]

To: Giacomo Gorgellino <giacomo.gorgellino,AT,contisoft,DOT,it>
Subject: Re: Cipe 1.6.0 VPN stalled if big file are transferred
From: Les Mikesell <les,AT,futuresource,DOT,com>
Date: Tue, 07 Mar 2006 08:45:57 -0600
Cc: cipe-l,AT,inka,DOT,de
In-reply-to: <003401c641ee$4fa0fbd0$4b2c66ad@contisoft>
References: <007a01c63ea4$52653180$4b2c66ad@contisoft> <440811AC.504@bank-connect.com> <00ab01c63eaf$1cd248e0$4b2c66ad@contisoft> <440845FB.3020601@bank-connect.com> <011b01c63ecd$629ef440$4b2c66ad@contisoft> <44085F16.7060004@bank-connect.com> <01c601c63ed9$aa5ced80$4b2c66ad@contisoft> <003401c641ee$4fa0fbd0$4b2c66ad@contisoft>

On Tue, 2006-03-07 at 07:52, Giacomo Gorgellino wrote:
> By doing other test I found that only when a file is transferred by the cipe
> server with a faster connection (1Mbit) to a cipe server with a slower
> connection (adsl 640Kbit) trough scp over cipe the tunnel goes in stall.
> 
> May be that is some kind of UDP-flood ?
> About this I found only CA-1996-01, may cipbe be vulnerable ?

If you are only doing one transfer the speed should be
throttled by the tcp window set on the underlying connection.
If other things are happening on the same tunnel you could
easily drop udp packets carrying the tunnel but the underlying
tcp retries should eventually get things through.

You might be able to use rsync with the --bwlimit option to
control the sending rate better.

-- 
  Les Mikesell
    les,AT,futuresource,DOT,com


<< | Thread Index | >> ]    [ << | Date Index | >> ]