Date: Wed, 23 Aug 1995 00:18:44 -0700 (PDT) From: Poul-Henning Kamp <phk> To: imp@village.org (Warner Losh) Cc: guido@gvr.win.tue.nl, peter@haywire.dialix.com, freebsd-hackers@FreeBSD.ORG Subject: Re: IPFW and SCREEND Message-ID: <199508230718.AAA16049@freefall.FreeBSD.org> In-Reply-To: <199508222226.QAA11084@rover.village.org> from "Warner Losh" at Aug 22, 95 04:26:00 pm
next in thread | previous in thread | raw e-mail | index | archive | help
> > : Just throw away *every* fragment that has as its start byte a byte in > : the TCP/IP header. (so smaller then 40) > > That's the fix, but it isn't implemented yet in most Firewalls. Actually, since all IP-nets SHALL transfer a minimum MTU of 576 (or thereabout), there is no reason to receive a fragment with an offset of less. -- Poul-Henning Kamp | phk@FreeBSD.ORG FreeBSD Core-team. http://www.freebsd.org/~phk | phk@login.dknet.dk Private mailbox. whois: [PHK] | phk@ref.tfs.com TRW Financial Systems, Inc. Just that: dried leaves in boiling water ?
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199508230718.AAA16049>