Does anyone have experience with the Marconi firewall/switches ? The only real issue that I'm aware of is the "fast path" behaviour, such that TCP packets which are not SYN/ACK packets are not checked against the rulebase. Obviously established connections can be hijacked with this, but if the connection to the intranet (or whatever we're worried about protecting) isn't allowed in the first place then there's nothing to be hijacked. Are we aware of any attack (a DoS or whatever) that can be launched without relying on hijacking a connection that's already set up? Typically a host won't accept a TCP packet that is non SYN/ACK and which doesn't belong to an established connection, but are there known loopholes in this? Are there any other security issues with the Marconi switches besides fast path? Regards - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
