Date: Tue, 25 Jul 2000 21:35:11 -0500 From: Stephen Montgomery-Smith <stephen@math.missouri.edu> To: Andrew Johns <johnsa@kpi.com.au> Cc: freebsd-security@FreeBSD.ORG Subject: Re: log with dynamic firewall rules Message-ID: <397E4E5F.202EBF1D@math.missouri.edu> References: <397E1E25.FE8731E7@math.missouri.edu> <397E4012.A1A93351@kpi.com.au> <397E48D1.DEC661C5@math.missouri.edu> <397E4BB9.8D9B6A39@kpi.com.au>
next in thread | previous in thread | raw e-mail | index | archive | help
Andrew Johns wrote: > > Why haven't you got something such as: > > allow all from any to any established > > **PRIOR** to the accept rule - that is what the established keyword is > for, I thought. > But that defeats the whole point of having a dynamic rule established - with the above rule the dynamic rule will never be used. -- Stephen Montgomery-Smith Department of Mathematics, University of Missouri, Columbia, MO 65211 Phone 573-882-4540, fax 573-882-1869 http://www.math.missouri.edu/~stephen stephen@math.missouri.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?397E4E5F.202EBF1D>