Date: Mon, 4 Sep 2000 07:10:46 +1100 (Australia/NSW) From: Darren Reed <avalon@coombs.anu.edu.au> To: rwatson@FreeBSD.ORG (Robert Watson) Cc: dr@kyx.net (Dragos Ruiu), cjclark@alum.mit.edu, cjclark@reflexnet.net (Crist J . Clark), billf@chimesnet.com (Bill Fumerola), list@rachinsky.de (Nicolas), freebsd-security@FreeBSD.ORG Subject: Re: ipfw and fragments Message-ID: <200009032010.HAA15013@cairo.anu.edu.au> In-Reply-To: <Pine.NEB.3.96L.1000903094614.69440A-100000@fledge.watson.org> from "Robert Watson" at Sep 03, 2000 09:57:35 AM
next in thread | previous in thread | raw e-mail | index | archive | help
In some mail from Robert Watson, sie said: [...] > > Does the same behaviour apply to ipf? > > Darren Reed will be able to best answer this question, and presumably will > do so. Damn I'd been not reading this thread at all until your email, Robert :-) What does IP Filter do with fragments ? That a packet is a fragment is a filterable atttribute. You can also tell it to remember "state information" triggered by the fragment with offset == 0. It never reassembles and doesn't hold them in a buffer until they're all received either. Darren To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200009032010.HAA15013>