Date: Tue, 3 Jun 1997 10:08:48 +0930 (CST) From: Michael Smith <msmith@atrad.adelaide.edu.au> To: darrenr@cyber.com.au (Darren Reed) Cc: security@FreeBSD.ORG Subject: Re: TCP RST Handling in 2.2 (fwd) Message-ID: <199706030038.KAA27794@genesis.atrad.adelaide.edu.au> In-Reply-To: <199706022238.IAA29632@plum.cyber.com.au> from Darren Reed at "Jun 3, 97 08:38:23 am"
next in thread | previous in thread | raw e-mail | index | archive | help
Darren Reed stands accused of saying: > > Darren > > p.s. I've brought this up because of people's experience with IP Filter > which currently won't allow any TCP packets through if they are > outside either window (when "keep state" is used). A case has been > presented where the RST being sent back has a 0 ACK field by a > non-zero SEQ field. Speaking of ipfilter, I was trying to help someone build it on a 2.2 box last night. Have you tested it there recently? Where do you define ACTUALLY_LKM_NOT_KERNEL in your LKM source before including <sys/conf.h>? (TBH, we both wanted to use ipfilter because they have a mix of NetBSD/FreeBSD/Solaris systems and your code runs on all of them, but, well, there's this little problem 8) -- ]] Mike Smith, Software Engineer msmith@gsoft.com.au [[ ]] Genesis Software genesis@gsoft.com.au [[ ]] High-speed data acquisition and (GSM mobile) 0411-222-496 [[ ]] realtime instrument control. (ph) +61-8-8267-3493 [[ ]] Unix hardware collector. "Where are your PEZ?" The Tick [[
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199706030038.KAA27794>