subject:"RE\: how to forbid to process IP, which are fragmentation\?"

Re: how to forbid to process IP, which are fragmentation?

2006-04-22 Thread Chuck Swiger


Andrew Wingorodov wrote:

how to forbid to process IP, which are fragmentation?


  ipfw add deny all from any to any frag

...but please be very sure that you are passing the ICMP message types used for 
path MTU discovery, or else your network may become a "notwork", at least as far 
as large packet sizes are concerned.


--
-Chuck

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

RE: how to forbid to process IP, which are fragmentation?

2006-04-22 Thread fbsd

use ipfilter firewall
read the manual firewall section.

http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/firewalls-
ipf.html

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Andrew
Wingorodov
Sent: Saturday, April 22, 2006 5:11 AM
To: freebsd-questions@freebsd.org
Subject: how to forbid to process IP, which are fragmentation?


how to forbid to process IP, which are fragmentation?
--
Andrew Wingborn
http://andr.ru/

+7(903)135-80-98
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
"[EMAIL PROTECTED]"

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: how to forbid to process IP, which are fragmentation?

RE: how to forbid to process IP, which are fragmentation?

2 matches

Site Navigation

Mail list logo

Footer information