On 17-Aug-99 Warner Losh wrote: > : Not that easily.. how are you going to make ipfw dynamically know > : which ports have listeners and which don't? > By filtering all RST packets? The defeats the purpose of having the computer not generate them in the first place.. Well not totally I suppose, but at least part of the advantage of dropping them completely would be that the machine wouldn't spend any time doing it at all... --- Daniel O'Connor software and network engineer for Genesis Software - http://www.gsoft.com.au "The nice thing about standards is that there are so many of them to choose from." -- Andrew Tanenbaum
PGP signature- Dropping connections without RST Geoff Rehmet
- Re: Dropping connections without RST Archie Cobbs
- Re: Dropping connections without RST Brian W. Buchanan
- Re: Dropping connections without RST Archie Cobbs
- Re: Dropping connections without RST Rodney W. Grimes
- Re: Dropping connections without RST Warner Losh
- Re: Dropping connections without R... Daniel O'Connor
- Re: Dropping connections without R... Rodney W. Grimes
- Re: Dropping connections without RST Rodney W. Grimes
- Re: Dropping connections without RST Daniel O'Connor
- Re: Dropping connections without RST Rodney W. Grimes
- Re: Dropping connections without R... Daniel O'Connor
- Re: Dropping connections without R... Geoff Rehmet
- Re: Dropping connections witho... Rodney W. Grimes
- Re: Dropping connections without RST Matt Crawford
- Re: Dropping connections without RST Leif Neland
- Re: Dropping connections without R... Ollivier Robert
