Re: ECN & cisco firewall

From: Andi Kleen (ak@suse.de)
Date: Fri Sep 08 2000 - 05:30:36 EST

Next message: Juan J. Quintela: "Re: test8-pre6 file corruption and oops"
Previous message: Ulrich Kiermayr: "Re: ECN & cisco firewall"
In reply to: David S. Miller: "Re: ECN & cisco firewall"
Next in thread: Alan Cox: "Re: ECN & cisco firewall"
Reply: Alan Cox: "Re: ECN & cisco firewall"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Sep 08, 2000 at 02:56:59AM -0700, David S. Miller wrote:
> That's a really anal, zero purpose, check to put into a firewall.
> I don't know of even any embedded printer stacks that puke when
> the reserved flag bits are non-zero. The only things this protects
> anyone from are extensions such as ECN :-)

To be fair even older netfilter had the same problem (ipt_unclean would
complain about the reserved bits). It is probably a common bug.

-Andi

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
Please read the FAQ at http://www.tux.org/lkml/

Next message: Juan J. Quintela: "Re: test8-pre6 file corruption and oops"
Previous message: Ulrich Kiermayr: "Re: ECN & cisco firewall"
In reply to: David S. Miller: "Re: ECN & cisco firewall"
Next in thread: Alan Cox: "Re: ECN & cisco firewall"
Reply: Alan Cox: "Re: ECN & cisco firewall"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Fri Sep 15 2000 - 21:00:10 EST