Date: Tue, 11 Jul 2006 11:39:27 +0100 From: "Greg Hennessy" <Greg.Hennessy@nviz.net> To: "'Ronnel P. Maglasang'" <rmaglasang@infoweapons.com> Cc: freebsd-pf@freebsd.org Subject: RE: PF firewall rules Message-ID: <000301c6a4d6$48d7b2d0$0a00a8c0@thebeast> In-Reply-To: <44B37BA0.7030405@infoweapons.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> > > > > is it safe to say to just remove the "keep state" behavior > for udp and other connectionless packets? No. Anything but. If you don't keep state, you would have to specifically code wide open ingress packet filtering rules for reply traffic. Greg
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?000301c6a4d6$48d7b2d0$0a00a8c0>