Re: ECN & cisco firewall

From: Alan Cox (alan@lxorguk.ukuu.org.uk)
Date: Fri Sep 08 2000 - 07:10:55 EST

Next message: Richard B. Johnson: "Re: kernel 2.2.17 build reboots"
Previous message: Mark Hindley: "Re: kernel 2.2.17 build rebootsy"
In reply to: Andi Kleen: "Re: ECN & cisco firewall"
Next in thread: Albert D. Cahalan: "Re: ECN & cisco firewall"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> > the reserved flag bits are non-zero. The only things this protects
> > anyone from are extensions such as ECN :-)
>
> To be fair even older netfilter had the same problem (ipt_unclean would
> complain about the reserved bits). It is probably a common bug.

The current British Standard kitemark for a firewall appears to require the
bug 8)

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
Please read the FAQ at http://www.tux.org/lkml/

Next message: Richard B. Johnson: "Re: kernel 2.2.17 build reboots"
Previous message: Mark Hindley: "Re: kernel 2.2.17 build rebootsy"
In reply to: Andi Kleen: "Re: ECN & cisco firewall"
Next in thread: Albert D. Cahalan: "Re: ECN & cisco firewall"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Fri Sep 15 2000 - 21:00:10 EST