Date: Wed, 4 Nov 1998 18:11:21 +0200 From: Neil Blakey-Milner <nbm@rucus.ru.ac.za> To: Open Systems Networking <opsys@mail.webspan.net>, freebsd-security@FreeBSD.ORG Subject: Re: Amazing wonder packet sneaks by deny all rule? Message-ID: <19981104181121.A4160@rucus.ru.ac.za> In-Reply-To: <Pine.BSF.4.02.9811040815360.4966-100000@orion.webspan.net>; from Open Systems Networking on Wed, Nov 04, 1998 at 08:28:08AM -0500 References: <Pine.BSF.4.02.9811040815360.4966-100000@orion.webspan.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed 1998-11-04 (08:28), Open Systems Networking wrote: > It's really late/early this morning and I was just checking the rule set > on a clients machine I just built. When I saw this: > > 65534 195 14104 deny log ip from any to any > 65535 1 76 deny ip from any to any > > Now maybe it's my lack of sleep but how did that amazing wonder packet > on rule 65535 sneak by 65534 :-) A fluke? A 1 in a million chance? I think the packet is likely to have arrived after firewalling kicked in, and before you added your 65534 rule. Neil -- Neil Blakey-Milner nbm@rucus.ru.ac.za To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19981104181121.A4160>