Resending two patches which have not yet made it to mainline, and
which (IMO) are fairly important and should go in before 2.6.11.

1) retransmission handling -- window tracking needs to look at both
   seq numbers in determining whether a retransmission has occurred

   http://lists.netfilter.org/pipermail/netfilter-devel/2005-January/018241.html

2) over-window handling -- window tracking should not adjust down
   the maximum seq number which it thinks a client has received --
   the client may disagree with this number

   http://lists.netfilter.org/pipermail/netfilter-devel/2005-January/018278.html

Patches attached below, comments welcomed.

Phil