how statefull firewall works for udp?

Mike. the.lists at mgm51.com
Fri Jan 21 13:17:39 CST 2011


On 1/21/2011 at 9:39 PM Tarig Ahmed wrote:

|Dear All
|Hi
|
|Default configuration for statefull firewall is to allow traffic form

|TRUST ZONE to UNTRUST ZONE.
|
|As I Know those device will use some feilds in the TCP Header.
|
|But, how the firewall will handle this policy for none TCP traffics  
|(udp, icmp, and IPsec)?
|
|I think understanding this will help me in the designing.
|
|Thanks
 =============



Here's one way it is done:
http://www.openbsd.org/faq/pf/filter.html#udpstate







More information about the NANOG mailing list