From owner-freebsd-security Thu Mar 8 13:30:26 2001 Delivered-To: freebsd-security@freebsd.org Received: from news.IAEhv.nl (news.iae.nl [212.61.26.37]) by hub.freebsd.org (Postfix) with ESMTP id 9123337B71C for ; Thu, 8 Mar 2001 13:30:17 -0800 (PST) (envelope-from Arjan.deVet@adv.iae.nl) Received: (from uucp@localhost) by news.IAEhv.nl (8.9.1/8.9.1) with IAEhv.nl id WAA05290 for security@freebsd.org; Thu, 8 Mar 2001 22:30:15 +0100 (MET) Received: by adv.devet.org (Postfix, from userid 100) id 2C53D462F; Thu, 8 Mar 2001 22:30:00 +0100 (CET) Date: Thu, 8 Mar 2001 22:30:00 +0100 To: security@freebsd.org Subject: Re: ipfw or ipf? Message-ID: <20010308222959.A91060@adv.devet.org> References: <5.0.2.1.0.20010307181400.0336ed18@pop.schulte.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i X-Newsgroups: list.freebsd.security In-Reply-To: <200103080229.f282T8E27412@cwsys.cwsent.com> Organization: Eindhoven, the Netherlands From: Arjan.deVet@adv.iae.nl (Arjan de Vet) Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org In article <200103080229.f282T8E27412@cwsys.cwsent.com> Cy Schubert wrote: >Its been reported that the state engine in IP Filter is more mature and >more restrictive because of the checks it does for TCP packets being >within the TCP window. I'm not sure whether IPFW does the same. See the following paper by Guido van Rooij for more information about 'TCP packets being within the TCP window': http://home.iae.nl/users/guido/papers/tcp_filtering.ps.gz Arjan -- Arjan de Vet, Eindhoven, The Netherlands URL: http://www.iae.nl/users/devet/ for PGP key: finger devet@iae.nl To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message