On 4/22/2014 1:41 PM, Anton Aylward wrote:
On 04/22/2014 12:31 PM, Patrick Shanahan wrote:
What I do not understand is how stopping the firewall and then restarting it does not destroy the connection as it apparently thought it was originally supposed to do.
That bothers me as a well There could be a security hole sitting there.
Firewalls usually do not disrupt pre-existing connections/sockets. Removing the firewall, simply allows the source and destination to continue unhindered. Reestablishing the firewall, and that same stream is allowed because it meets the rules. A simple firewall is distinct from a router. But even most iptables based router implementations would allow established connections to continue. -- _____________________________________ ---This space for rent--- -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org