|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Firewall-Wizards Digest V1 #311
Ryan Russell (Ryan.Russell
sybase.com)
Thu, 3 Jun 1999 07:34:16 -0700
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
- Next message: Matthew_S_Cramerarmstrong.com: "Re: sms and adsm over firewalls"
- Previous message: Geva Patz: "Re: Anybody have a clue why..."
- Maybe in reply to: Will Kempf: "Anybody have a clue why..."
- Next in thread: Ivan Arce: "Re: Firewall-Wizards Digest V1 #311"
- Reply: Ivan Arce: "Re: Firewall-Wizards Digest V1 #311"
- Reply: Kevin Steves: "Re: Firewall-Wizards Digest V1 #311"
>Why not simply check the data field for the SR tag? A real proxy should
>be unable to forward traffic (source routed or not) without proxy
>intervention.
Those types of things get stripped off before the daemon gets
the data, no? Doesn't all the interesting info below layer 4 get
"eaten" by the OS by the time an app using sockets gets
it?
>> FW-1 doesn't do it..
>
>Actually, it does. It has dropped SR by default since 2.1b or so. I
>remember having to apply the patch. ;)
Sorry, I stand corrected.
Ryan
- Next message: Matthew_S_Cramerarmstrong.com: "Re: sms and adsm over firewalls"
- Previous message: Geva Patz: "Re: Anybody have a clue why..."
- Maybe in reply to: Will Kempf: "Anybody have a clue why..."
- Next in thread: Ivan Arce: "Re: Firewall-Wizards Digest V1 #311"
- Reply: Ivan Arce: "Re: Firewall-Wizards Digest V1 #311"
- Reply: Kevin Steves: "Re: Firewall-Wizards Digest V1 #311"
This archive was generated by hypermail 2.0b3 on Sat Jul 17 1999 - 07:18:59 CDT