Home » Mailing list archives » openbsd-misc » 2008 » July » 1

Re: sloppy states and dsr

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
[view in full thread]
From: Henning Brauer <lists-openbsd@...>
To: <misc@...>
Subject: Re: sloppy states and dsr
Date: Monday, June 30, 2008 - 8:33 pm

* Ted Unangst  [2008-06-20 20:50]:


not necessarily only, but that would be the most common use I bet.

In general, you use it when you cannot avoid it, as in, the other

option is to not filter stateful at all since you don't see all of the

packets for the connection.


> The firewall in front of everything still uses normal tracking?


absolutely!


--

Henning Brauer, hb@bsws.de, henning@openbsd.org

BS Web Services, http://bsws.de

Full-Service ISP - Secure Hosting, Mail and DNS Services

Dedicated Servers, Rootservers, Application Hosting - Hamburg & Amsterdam
Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
Messages in current thread:
sloppy states and dsr, Ted Unangst, (Fri Jun 20, 2:47 pm)
Re: sloppy states and dsr, Henning Brauer, (Mon Jun 30, 8:33 pm)
Re: sloppy states and dsr , Theo de Raadt, (Tue Jul 1, 2:35 am)
Re: sloppy states and dsr, Paul de Weerd, (Fri Jun 20, 8:24 pm)
Re: sloppy states and dsr, Pierre-Yves Ritschard, (Fri Jun 20, 2:58 pm)
Re: sloppy states and dsr, Darrin Chandler, (Fri Jun 20, 3:49 pm)
Re: sloppy states and dsr, Ryan McBride, (Fri Jun 20, 8:12 pm)
Re: sloppy states and dsr, Darrin Chandler, (Fri Jun 20, 8:58 pm)