Firewall / active filter question
Dustin Decker
dustind at moon-lite.com
Fri Dec 13 18:02:20 CST 2002
On Fri, 13 Dec 2002, Jared Smith wrote:
> This is passive. What I lay awake last night
> thinking was, what about filtering in an active
> manner? With an active filter, the only packets
> acceptible are those which have been specifically
> requested. You'd have a buffer which kept track of
> all outgoing requests, and waited for a few minutes
> to receive them. Everything else would be rejected.
This is called "stateful packet inspection" in most cases. Just about
every decent firewall out there (and hopefully all the home grown
ipchains/iptables scripts as well) do this.
Dustin
--
*-----------------------------------*
| Dustin Decker |
| dustind at moon-lite.com *-----------------------------------------*
| http://www.dustindecker.com | |
| Moon-Lite Computing | "How many teamsters does it take to |
| 913.579.7117 | screw in a light bulb?" |
*-----------------------------| |
| "FIFTEEN!! YOU GOT A PROBLEM WITH THAT?"|
| |
*-----------------------------------------*
More information about the Kclug
mailing list