[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: tagging & keep state

* Ed White <[email protected]> [2004-05-31 18:14]:
> Example: on rl0 we have created a state and so for this interface the ruleset 
> is not evaluated. However when the packet goes to rl1 (suppose this is the 
> external interface) the fact that packets come tagged or not is important for 
> ruleset evaluation.
it isn't really, as the parser enforces pass rules with 'tagged' to be 
stateful, so the first packet will create state there as well.
Henning Brauer, BS Web Services, http://bsws.de
[email protected] - [email protected]
Unix is very simple, but it takes a genius to understand the simplicity.
(Dennis Ritchie)