I've received the following message ( and a couple of other more )
for at least 4 times.
Is there anything wrong with the mailing list or is it my router?
To: cbk @ starbase.ingress.com ("charles b. kaplan") @ internet
cc: firewalls @ greatcircle.com @ internet (bcc: Massimo Cotrozzi)
From: Bill_Conaway @ iongate.staff.ichange.com (Bill Conaway) @ internet
Date: 01/03/96 15.37
Subject: Re: IP fragments and packet filters
Charles B. Kaplan wrote:
>
> >The only time you're ever likely to see a packet with FO=1 is if a bad guy is
> >knocking at your door.
>
> Would there ever be exceptions to this that would stem from the passing of
> data long distance, and thus forcing the data into a bigger pipe (say an ATM
> link cross country), and then back out of the pipe, possible becoming
> fragmented.
See rfc1858, "Security Considerations for IP Fragment Filtering".
--
Eric V. Smith | Some for renown on scraps of learning dote,
EricSmith @
windsor .
com | And think they grow immortal as they quote.
Windsor Software Corp +----------------------------------+ Edward Young
http://www.windsor.com/ Windows NT, Unix, SQL Server | English poet
|
|
