HomeFreeBSD

icmp6: bring rate limiting on a par with IPv4

Description

icmp6: bring rate limiting on a par with IPv4

Use counter_ratecheck() instead of racy and slow ppsratecheck. Use a
separate counter for every currently known type of ICMPv6. Provide logging
of ratelimit events. Provide jitter to counter open UDP port detection.

Reviewed by: tuexen, zlei
Differential Revision: https://reviews.freebsd.org/D44482

(cherry picked from commit a03aff88a14448c3084a0384082ec996d7213897)

Details

Provenance
glebiusAuthored on Mar 24 2024, 4:13 PM
zleiCommitted on Jun 26 2024, 4:48 AM
Parents
rG24a07b61ff28: icmp6: move ICMPv6 related tunables to the files where they are used
Branches
Unknown
Tags
Unknown