[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: tagging & keep state



* Ed White <[email protected]> [2004-05-31 18:14]:
> Example: on rl0 we have created a state and so for this interface the ruleset 
> is not evaluated. However when the packet goes to rl1 (suppose this is the 
> external interface) the fact that packets come tagged or not is important for 
> ruleset evaluation.
it isn't really, as the parser enforces pass rules with 'tagged' to be 
stateful, so the first packet will create state there as well.
-- 
Henning Brauer, BS Web Services, http://bsws.de
[email protected] - [email protected]
Unix is very simple, but it takes a genius to understand the simplicity.
(Dennis Ritchie)