On Thu, Aug 29, 2002 at 09:56:17PM +0200, Alexandre Dulaunoy wrote: > As the scrub directive can be set with a specified min/max ttl. This could > be also useful to add set_ttl directive into scrub to make a > normalization of the ttl in the packet.
It's certainly possible, but wouldn't it royally break traceroute and other applications that _use_ ttl? Is this an attempt to hide the fact that connections from behind the firewall originate from different hosts? How does min-ttl 255 not achieve the same result? The packets might still take different paths with varying number of hops and arrive with varying ttls at the destination. Or what's the purpose of resetting all ttls that pass through the filter? Daniel
