Date: Tue, 14 Jan 2003 00:32:24 -0800 (PST) From: Josh Brooks <user@mail.econolodgetulsa.com> To: freebsd-questions@freebsd.org Subject: ipfw rule help needed Message-ID: <20030114003015.G78856-100000@mail.econolodgetulsa.com>
next in thread | raw e-mail | index | archive | help
Hi, I am trying to create these two ipfw rules: deny all packets with an ack of zero deny all tcp packets with no MSS specified Can anyone show me the syntax to do that ? Also, comments on bad things that could happen if I put these in are appreciated. AFAIK, the only thing that can happen is that 1 in every 2^32 valid packets will be denied by the ack zero rule, and that the second rule will not affect anything except people using syn flood tools - since every valid tcp packet should have a MSS, right ? thanks. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030114003015.G78856-100000>