Lance Spitzner wrote:
>
> Mikael, before we flame Checkpoint, keep in mind they are following
> RFC. The end host, and not intermediary routers, are supposed to
> preform packet reassembly [Stevens, 11.5].
I agree if we are talking switches/routers, but a firewall is a
different animal. For example its not RFC correct to issue a RST if you
are an intermediary, but firewalls use this all the time as an effective
tool. In fact FW-1 is one of them. So it looks like RFC adhearance is
"selective" at best when your talking about a firewall. ;)
> Whooh, looks like I did a bad job of my description.
Or you just didn't expect me to quote you in this fashion. Sorry if I
put you on the spot.
Chris
--
**************************************
[EMAIL PROTECTED]
* Mastering Cisco Routers
http://www.amazon.com/exec/obidos/ASIN/078212643X/
* Mastering Network Security
http://www.amazon.com/exec/obidos/ASIN/0782123430/
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
