TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
[EMAIL PROTECTED] Contact [EMAIL PROTECTED] for help with any problems!
----------------------------------------------------------------------------
Shimon,
The value field refers to the decimal representation of the bits in
the flags portion of the TCP header. Example...Value 21:
Decimal Value 21 = Binary Value 10101 = ACK/RST/FIN
Basically, Just match up the binary with bits 4-8 of the 14th byte in the
TCP header.
Brian J. Bartholomew
U.S. Dept of State, Bureau of Diplomatic Security
Computer Incident Response Team
(202)663-2304
-----Original Message-----
From: Shimon Silberschlag [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, February 05, 2002 4:27 AM
To: [EMAIL PROTECTED]
Subject: IP Protocol Violation
TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
[EMAIL PROTECTED] Contact [EMAIL PROTECTED] for help with any
problems!
----------------------------------------------------------------------------
Hi All,
Can anyone explain what the VALUE field for IP Protocol Violation alert
specifies?
Thanks,
Shimon
