On 30/08/2002, Daniel Hartmeier <[EMAIL PROTECTED]> wrote To [EMAIL PROTECTED]: > I'm not familiar with Cisco rule sets, so please explain what the latter > rule does, exactly.
cisco's 'established' lets anything 'in' where it thinks (!) that it belongs to answering packets. such as fin/rst/syn-ack/ack packets. More or less, anything except a pure 'syn'. so consider this 'established' a subset of 'keep state' where the later provides way more filtering security.
