Date: Mon, 7 Jan 2002 16:23:46 -0600 From: Bill Fumerola <billf@mu.org> To: Ripper Roo <ripper_roo1@hotmail.com> Cc: freebsd-security@FreeBSD.ORG Subject: Re: IPFW - Updating config file & dynamic ruleset Message-ID: <20020107162346.C4417@elvis.mu.org> In-Reply-To: <F271AMfKQu1bCdUg07M00012012@hotmail.com>; from ripper_roo1@hotmail.com on Mon, Jan 07, 2002 at 04:50:44PM %2B0000 References: <F271AMfKQu1bCdUg07M00012012@hotmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Jan 07, 2002 at 04:50:44PM +0000, Ripper Roo wrote: > Also, how long are dynamic rules maintained and do the stateful rules follow > TCP sequence numbers in IPFW to validate packets "authenticity"? the time they survive is documented in ''man ipfw'', search for 'lifetime'. the stateful rules do not do any sanity checking of the tcp sequence #. -- - bill fumerola / fumerola@yahoo-inc.com / billf@FreeBSD.org / billf@mu.org - my anger management counselor can beat up your self-affirmation therapist To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020107162346.C4417>