drygdryg/zapret
1
0
Fork 0
mirror of https://github.com/bol-van/zapret.git synced 2025-05-24 22:32:58 +03:00
Code Issues Packages Projects Releases Wiki Activity

readme: cosmetics

Browse Source
This commit is contained in:
bol-van
2022-01-04 13:25:23 +03:00
committed by GitHub
parent caad4edf5f
commit b2ad9cb594
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
docs/readme.eng.md
View File

@@ -404,9 +404,9 @@ ipv4 : Linux allows to send ipv4 fragments but standard firewall rules in OUTPUT
ipv6 : There's no way for an application to reliably send fragments without defragmentation in conntrack.
Sometimes it works, sometimes system defragments packets.
Looks like kernels <4.16 have no simple way to solve this problem. Unloading of nf_conntrack module
and its dependency nf_defrag_ipv6 helps but this severe impacts functionality.
and its dependency nf_defrag_ipv6 helps but this severely impacts functionality.
Kernels 4.16+ exclude from defragmentation untracked packets.
See blockcheck.sh code for example.
See `blockcheck.sh` code for example.
## tpws