Great Circle Associates Firewalls
(November 1996) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: packet filtering based on TCP sequence number
From: Marc Slemko <marcs @ znep . com>
Date: Mon, 4 Nov 1996 23:37:44 -0700 (MST)
To: firewalls @ greatcircle . com 
Does anyone know of any packet filters available that can filter based on
TCP sequence number?  ie. do not let packets with a certain sequence
number through.

No, it isn't very useful in general but it sure would be nice to be able
to filter TCP SYN denial of service attacks with random source IP and port
but where the attacker is dumb enough to use the same sequence number all
the time.  <sigh>
Indexed By Date Previous: Re: multicast question
From: Charles Ragan <charles_ragan @ INS . COM>
Next: Re: Spoofing... How does it work.
From: GUINET Thierry <thierry @ namsa . nato . int>
Indexed By Thread Previous: Re: Network Statistics
From: Todd Graham Lewis <lists @ reflections . mindspring . com>
Next: Firewall selection!
From: "Ken Meade" <kmeade @ tcd . ie>
Google
 
Search Internet Search www.greatcircle.com