[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FW1] DoS question

To: fw-1-mailinglist@lists.us.checkpoint.com
Subject: [FW1] DoS question
From: Alan.Trevillion@bankofamerica.com
Date: Tue, 07 Sep 1999 11:33:17 +0100




I just wanted to clarify a few facts on how Firewall 3.0b, patch 3064 deals with
state connection tables.
I have just read Lance's excellent white paper on how it works, but just need to
be sure on a few things.

Am I right in saying that if you send an ACK to or through the Firewall, it
checks that state connection table first and if it is NOT there, it then checks
the rulebase, then if allowed it adds the packet to it's table ?

If so, does it check the reverse order of the rule ? ,
 i.e. If you have a rule where A can talk to B, if you send an ACK from B to A
will it accept it and add it to it's table with the default TCP time-out ?

Thanks in advance

Alan Trevillion

Bank of America
Internet LAN/WAN Group




================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: [FW1] Fwd:
Next by Date: [FW1] Traceroute and NAT
Prev by thread: [FW1] Fwd:
Next by thread: Re: [FW1] DoS question
Index(es):
- Date
- Thread