Is my understanding correct that a filtering router has to allow any inbound
packets with the ACK bit set in as long as it's to an allowed port #,
regardless of the actual state or existence of a real connection?
Please excuse my ignorance in this matter, but if that's the case are than
any router/filtering packages/combinations that can prevent that? If not,
how great a security concern is it?
thanks in advance,
Andrew Foss Tel. 415/494-NETS(6387)
Network Translation Inc. Dir. 415/855-0725
1901 Embarcadero Rd. FAX 415/424-9110
Palo Alto, CA 94303 email afoss @