Date: Sat, 15 Jun 2002 20:46:38 -0400 From: "Joe & Fhe Barbish" <barbish@a1poweruser.com> To: "Ilia Chipitsine" <ilia@cgu.chel.su> Cc: "FBSDQ" <questions@FreeBSD.ORG> Subject: RE: ipfw: stateful rules & UDP/ICMP Message-ID: <MIEPLLIBMLEEABPDBIEGEENHCCAA.barbish@a1poweruser.com> In-Reply-To: <Pine.BSF.4.10.10206152154500.481-100000@jane.poka.net>
next in thread | previous in thread | raw e-mail | index | archive | help
First of all there are two stateful rule types. The simple stateful setup/established rules type only works on the tcp protocol. The advanced stateful check-state/keep-state rule type works on tcp & udp protocols and should be used exclusively in your ipfw rules file for max protection. ICMP traffic can only be denied or allowed using stateless rules, advanced stateful check-state/keep-state rules have no special effect on ICMP packets. -----Original Message----- From: owner-freebsd-questions@FreeBSD.ORG [mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of Ilia Chipitsine Sent: Saturday, June 15, 2002 11:56 AM To: questions@FreeBSD.ORG Subject: ipfw: stateful rules & UDP/ICMP Dear Sirs, do stateful rules have any effect on UDP/ICMP trafic ? Regards, (Наилучшие пожелания) Ilia Chipitsine (Илья Шипицин) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?MIEPLLIBMLEEABPDBIEGEENHCCAA.barbish>