[afnog] Fwd: how statefull firewall works for udp?
Tarig Ahmed
tariq198487 at hotmail.com
Fri Jan 21 19:18:57 UTC 2011
FYI
--
Tarig Yassin A. Ahmed
www.suin.edu.sd
skype:tarig_sudan1
Begin forwarded message:
> From: Justin Krejci <jkrejci at usinternet.com>
> Date: January 21, 2011 9:47:03 PM GMT+03:00
> To: Tarig Ahmed <tariq198487 at hotmail.com>
> Subject: Re: how statefull firewall works for udp?
>
> Most commonly it is idle timer based on the source IP+port and
> destination IP+port.
> Some firewalls can inspect upper layer protocols and monitor
> communications and when they see certain known protocols complete
> their transactions will then know to remove the state entry for that
> specific connection.
>
> Here are some basics with regards specifically to iptables
> http://www.sns.ias.edu/~jns/wp/2006/01/12/iptables-connection-tracking-udp/
>
>
> -----Original Message-----
> From: Tarig Ahmed <tariq198487 at hotmail.com>
> To: nanog at nanog.org list <nanog at nanog.org>, African Network
> Operators <afnog at afnog.org>
> Subject: how statefull firewall works for udp?
> Date: Fri, 21 Jan 2011 21:39:51 +0300
> Mailer: iPhone Mail (7E18)
>
> Dear All
> Hi
>
> Default configuration for statefull firewall is to allow traffic form
> TRUST ZONE to UNTRUST ZONE.
>
> As I Know those device will use some feilds in the TCP Header.
>
> But, how the firewall will handle this policy for none TCP traffics
> (udp, icmp, and IPsec)?
>
> I think understanding this will help me in the designing.
>
> Thanks
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://afnog.org/pipermail/afnog/attachments/20110121/abf68974/attachment.html>
More information about the afnog
mailing list