-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
> -----Original Message-----
> From: Bernd Eckenfels [mailto:[EMAIL PROTECTED]]
> Sent: Monday, January 01, 2001 10:14 PM
>
> [...]
> ICMP_NEED_FRAG is used by Routers on the Internet to inform
> you, that your
> Packetes are too big and that they need Fragmentation. If you
> do not allow
> them in, you will have to turn off MTP Path Discovery (since
> if you leave it
> on, your TCP Packets are send with "DONT_FRAG" flags, so a
> router will drop
> them and not fragment them.
> [...]
I agree that this ICMP type is important, but isn't it only important
to my router? I mean, what does my firewall care? My firewall can
send a huge packet through my router (with the default Ethernet
packet size), and when the router can not transfer it out to the
Internet and get such an ICMP packet from some other router, then the
router should fragment the packet and send it on its way, not the
firewall, or am I missing something? Doesn't fragmentation occur from
one device to the next?
Regards,
Frank
-----BEGIN PGP SIGNATURE-----
Version: PGP Personal Privacy 6.5.8
Comment: PGP or S/MIME encrypted email preferred.
iQA/AwUBOlFqXJytSsEygtEFEQLIXQCfWAjpKYus7+uM+cH0xpFYGNyWhx8An1iP
loymhiYp5KW5y7SgqDSvR1os
=RhNt
-----END PGP SIGNATURE-----
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
