spamassassin 2.54 released
Spicer, Kevin
Kevin.Spicer at BMRB.CO.UK
Fri May 16 11:14:36 IST 2003
> No. (Most) statefull firewall don't keep UDP states because
> UDP is not a
> connection oriented protocol and thus doesn't have any state.
>
> Statefull firewalls build their state table based on SYN-packets and
> those are not present in UDP.
>
Yes and No. Whilst this is probably true for some firewalls my experience is that both Checkpoint FW-1 and Linux IP tables (set up with shorewall - which rocks btw) manage to cope with replies to UDP packets quite nicely. I assume that the firewall tracks outgoing packets destination IP and port then permits traffic from that location back to the originator for a certain period (but I'm guessing!)
BMRB International
http://www.bmrb.co.uk
+44 (0)20 8566 5000
_________________________________________________________________
This message (and any attachment) is intended only for the
recipient and may contain confidential and/or privileged
material. If you have received this in error, please contact the
sender and delete this message immediately. Disclosure, copying
or other action taken in respect of this email or in
reliance on it is prohibited. BMRB International Limited
accepts no liability in relation to any personal emails, or
content of any email which does not directly relate to our
business.
More information about the MailScanner
mailing list