Date: Sun, 8 Feb 1998 22:18:52 -0200 (EDT) From: Joao Carlos Mendes Luis <jonny@coppe.ufrj.br> To: archie@whistle.com (Archie Cobbs) Cc: marcs@znep.com, hackers@FreeBSD.ORG Subject: Re: ipfw logs ports for fragments Message-ID: <199802090018.WAA11332@gaia.coppe.ufrj.br> In-Reply-To: <199802052006.MAA10605@bubba.whistle.com> from Archie Cobbs at "Feb 5, 98 12:06:28 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
#define quoting(Archie Cobbs) // Marc Slemko writes: // > Feb 4 16:08:27 zaius /kernel: ipfw: 320 Deny UDP 199.170.121.15:14592 198.161.84.2:2 in via de0 Fragment = 29 // > // > Trust me, those port numbers are not right. ipfw should not log the // > port number if a packet is a fragment. // // Good point... patch below fixes it. Maybe a stupid question: If you filter by port, only the first frag may be filtered. Then, what will happen to the destination machine, receiving lots of incomplete packets ? Jonny -- Joao Carlos Mendes Luis jonny@gta.ufrj.br +55 21 290-4698 jonny@coppe.ufrj.br Universidade Federal do Rio de Janeiro UFRJ/COPPE/CISI PGP fingerprint: 29 C0 50 B9 B6 3E 58 F2 83 5F E3 26 BF 0F EA 67 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199802090018.WAA11332>