Great Circle Associates Firewalls
(December 1995) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Filtering fragmented IP frames
From: Patrick Drolet <pdrolet @ CyberSecure . Com>
Date: Mon, 04 Dec 1995 16:18:05 -0500
To: firewalls @ greatcircle . com 
Filtering IP frames is quite simple.
Filtering UDP/IP or TCP/IP frames seems quite simple...

The problem filtering TCP/IP is fragmentation; How does a firewall (or even a
Cisco Secure Router) manage to filter fragmented IP frames knowing that the
TCP or UDP header is only on the first frame ? 

Patrick.
.-------------.
| CyberSecure |
|-----------------------------------------------------------.
| Patrick Drolet, eng.   |                                  |
| pdrolet @
 cybesecure .
 com | Can your network keep a secret ? |
| (514) 289-8520         |                                  |
`-----------------------------------------------------------'
Follow-Ups:
Indexed By Date Previous: Re: physical security
From: njb @ knoware . nl (Niels Bjergstrom)
Next: Re[2]: SDI etc. (3of3)
From: "Dave Druitt" <dave_druitt @ GWFX1 . sysorex . com>
Indexed By Thread Previous: Re: Type enforcement vs chroot and buffers
From: Rick Smith <smith @ sctc . com>
Next: Re: Filtering fragmented IP frames
From: Darren Reed <avalon @ coombs . anu . edu . au>
Google
 
Search Internet Search www.greatcircle.com