On Mon, 22 May 2000, mouss wrote:
> The only things that an IP filter gets that are not handed to an ALG are:
> - the receiving network interface
> - protocol headers
Thisis erronious- filters also get fragments (including invalid fragments)
and out-of-order TCP packets in received order.
Paul
-----------------------------------------------------------------------------
Paul D. Robertson "My statements in this message are personal opinions
[EMAIL PROTECTED] which may have no basis whatsoever in fact."
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
