[120863] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: I don't need no stinking firewall!

daemon@ATHENA.MIT.EDU (Peter Hicks)
Tue Jan 5 16:02:56 2010

Date: Tue, 05 Jan 2010 21:01:27 +0000
From: Peter Hicks <peter.hicks@poggs.co.uk>
To: Tony Finch <dot@dotat.at>
In-Reply-To: <alpine.LSU.2.00.1001052049110.3461@hermes-1.csi.cam.ac.uk>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org

Tony Finch wrote:

> Stateful inspection is useful for breaking things in subtle and
> hard-to-debug ways.
 >
> http://fanf.livejournal.com/102206.html
> http://fanf.livejournal.com/95831.html

Is that really stateful inspection?  Isn't the SMTP fixup on a PIX an 
application-level gateway?

I *though* most of the world turns SMTP fixup off because it's naff.


Peter


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[120863] in North American Network Operators' Group

Re: I don't need no stinking firewall!

daemon@ATHENA.MIT.EDU (Peter Hicks)Tue Jan 5 16:02:56 2010

daemon@ATHENA.MIT.EDU (Peter Hicks)
Tue Jan 5 16:02:56 2010