Yale,
#What I wonder is that if the webserver redirect to 8080(diff from the
#original trying to 80),why stateful inspection firewall could let these
#kinds of traffic in after checked its state table and then to
re-establishes
#a new connection?
The client is still establishing the connection out to port 8080. The
webserver just tells the client on port 80 to re-establish the connection
on port 8080. If you do a rule that says allow any traffic LAN to WAN then
nothing further needs to be done. If you write seperate rules for all your
LAN to WAN traffic then you will need a rule for any port 8080 LAN to WAN.
Regards,
Jeffery Gieser
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
