>I.e the NetBSD will calculate each of those one packet against
>ip_maxfragpackets, and OpenBSD will calculate each of those 8000
>fragments as one fragment against ip_maxqueue (i.e one packet is
>calculated as 8000 instead of 1). The ip_maxqueue seems to be 300 on
>OpenBSD, so this attack does not apply there, because the fragments
>are dropped after 300 of them. For NetBSD you can send 200 of those
>attack packets before it starts dropping them.
>
>So for NetBSD this attack should work.

	you are right.  and same goes for IPv6 too...

itojun@oops