Hi ,
so, I guess it's possible to put all related packets into a user-space ,
merging all packets / or better fragments together and look for the
string, then deciding if dropping or not. So the http or any other
connection oriented server should get its ACK and the firewall will decide
if dropping the packets or not. This will not increase the network traffic
- but the requirements onto the hardware.
Am I wrong ???
Greetings,
Bruno Leonhardt
LPI Level 1 Certified
Watchguard Certified System Professional
CLP Domino R5 Systemadministrator
Thomas Seliger
Hi folks,
[snip]
if you drop *single* packets out of a stream of packets, what happens? lets say you drop the third packet because it matches the keyword. would
the sender not try to resend the packet because he gets no ACK for it? And based on the implementation try to resend it again until it times out? This would result in increased network traffic?
peace, Tom
-- Check the headers for your unsubscription address For additional commands, e-mail: suse-security-help@suse.com Security-related bug reports go to security@suse.de, not here