From owner-freebsd-ipfw@FreeBSD.ORG  Sat Oct  4 10:53:13 2003
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
Delivered-To: freebsd-ipfw@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id B3D0F16A4B3
	for <freebsd-ipfw@freebsd.org>; Sat,  4 Oct 2003 10:53:13 -0700 (PDT)
Received: from imul.math.uni.lodz.pl (imul.math.uni.lodz.pl [212.191.65.2])
	by mx1.FreeBSD.org (Postfix) with ESMTP id C885943FDF
	for <freebsd-ipfw@freebsd.org>; Sat,  4 Oct 2003 10:53:12 -0700 (PDT)
	(envelope-from mg@fork.pl)
Received: from localhost (localhost.math.uni.lodz.pl [127.0.0.1])
	by imul.math.uni.lodz.pl (Mail Transport Agent) with ESMTP
	id 2C9C81F34; Sat,  4 Oct 2003 19:52:30 +0200 (CEST)
Received: from  by localhost (amavisd-new, port ) id E4bQ5Jhj;
 Sat,  4 Oct 2003 19:52:28 +0200 (CEST)
Received: from fork.pl (imul.math.uni.lodz.pl [212.191.65.2])
	by imul.math.uni.lodz.pl (Mail Transport Agent) with ESMTP
	id 8C08B1F0A; Sat,  4 Oct 2003 19:52:26 +0200 (CEST)
Message-ID: <3F7F08F6.3050908@fork.pl>
Date: Sat, 04 Oct 2003 19:52:54 +0200
From: Marcin Gryszkalis <mg@fork.pl>
Organization: fork.pl
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US;
	rv:1.5b) Gecko/20030827
X-Accept-Language: en-us, en, pl
MIME-Version: 1.0
To: Roderick van Domburg <r.s.a.vandomburg@student.utwente.nl>
References: <006b01c38a90$dea3b420$6ba55982@gog> <3F7EFDFA.4060703@fork.pl>
	<007d01c38a9e$73883cc0$6ba55982@gog>
In-Reply-To: <007d01c38a9e$73883cc0$6ba55982@gog>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: by amavis/mks_vir at math.uni.lodz.pl
cc: freebsd-ipfw@freebsd.org
Subject: Re: When to use setup keyword?
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 04 Oct 2003 17:53:13 -0000

On 2003-10-04 19:39, Roderick van Domburg wrote:
> I know, but HTTP/1.1 does allow for ``threaded sessions'', so to speak. What
> I don't know without glancing at any RFC's is whether HTTP/1.1 clients open
> multiple sockets on port 80 or several sockets in the dynamic range.
I've never heard about http service opening ports other than those explicitly
specified (usually 80). Client can open several paralell connections to
the port.

> Hence my question: which services require the setup keyword and which don't?
I'd say - every TCP-based service require either setup/established rules or
statefull rules.

regards
-- 
Marcin Gryszkalis
jabber jid:mg@chrome.pl
gg:2532994
http://fork.pl