Sluggers,
Bit of a heads up for those thinking about the 2.4 kernel,
maybe someone can shed some light on this.
One of the guys here has just upgraded his rh6.1 box to the new
2.4 kernel. Networking to hosts on the same leg of the Lan works
fine, udp, icmp and tcp. However only udp and icmp work to hosts
on another leg of the lan, accessed via a Pix firewall (cisco).
(The Linux box is on the higher security side).
The networking boffins had this to say,
PIX firewall appears to send a reset to any tcp session attempted
to be established by the 2.4 server. ICMP and UDP are passed OK.
The problem may be related to the fact that the IP ID field is
constantly set to 0 -> although this doesn't appear to be illegal,
it may be the cause of the problem with the PIX firewall. A
'predictable' ID has been the basis for some types of hacks.
Anyone have any ideas?, anyone having the same problem?
rgds
Pete
--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug
