[prev in list] [next in list] [prev in thread] [next in thread]
List: suse-security
Subject: Re: [suse-security] UDP and "-m state --state xxx"? (Re: [suse-security] Looking
From: "Ralph Seichter" <r.seichter () isc-inf ! com>
Date: 2001-08-30 7:19:19
[Download RAW message or body]
--=_alternative 002838D7C1256AB8_Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="iso-8859-1"
Andreas Baetz wrote:
> according to the manual and to my tests it [stateful inspection] not
only
> works for tcp, but also for udp and icmp (for what else, I don't know)
Thanks, Andreas. I shall overhaul my personal iptables script and add
state checking to the rules dealing with UDP / ICMP based services. I
thought that stateful inspection was available for TCP only, but it is
good to know I made a mistake in assuming so.
Mit freundlichen Grüssen / Regards
Dipl. Inform. Ralph Seichter
ISC Informatik Service & Consulting GmbH
Tel +49 2241 867-0 mailto:r.seichter@isc-inf.com
Fax +49 2241 867-222 http://www.isc-inf.com/
--=_alternative 002838D7C1256AB8_Content-Transfer-Encoding: quoted-printable
Content-Type: text/html; charset="iso-8859-1"
<br><font size=2 face="sans-serif">Andreas Baetz wrote:</font>
<br>
<br><font size=2 face="sans-serif">> according to the manual and to my tests it \
[stateful inspection] not only</font> <br><font size=2 face="sans-serif">> works \
for tcp, but also for udp and icmp (for what else, I don't know)</font> <br>
<br><font size=2 face="sans-serif">Thanks, Andreas. I shall overhaul my personal \
iptables script and add state checking to the rules dealing with UDP / ICMP based \
services. I thought that stateful inspection was available for TCP only, but it is \
good to know I made a mistake in assuming so.<br> </font><font size=2 face="Courier \
New"><br> <br>
Mit freundlichen Grüssen / Regards<br>
<br>
Dipl. Inform. Ralph Seichter<br>
ISC Informatik Service & Consulting GmbH<br>
Tel +49 2241 867-0 mailto:r.seichter@isc-inf.com<br>
Fax +49 2241 867-222 http://www.isc-inf.com/<br>
</font>
--=_alternative 002838D7C1256AB8_=--
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic