> Robert Glover wrote:
> > Some wretched soul might send a non-SYN packet at one your open TCP ports as
> > part of some kind of port scan. The response from that port would tell them
> > that something is there. If those ports were blocked by the stateful
> > inspection firewall, then there would be no response.
>
> I see. I don't have a lot of experience writing custom IP packets, so
> what kind of response would a Linux kernel send to a packet without a
> SYN flag that wasn't part of an established stream?
I'm not too sure. It would probably reject or discard the packet if the
sequence numbers didn't match.
> I really don't want to sound argumentative... just trying to learn more
> about TCP. From what you've described, I can see the value of stateful
> firewalls. Sounds like something that would be very useful to all of us
> broadband users...
>
> Thanks
> MSG
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
