On Mon, Aug 14, 2000 at 06:44:28PM -0400, Bruce Petro wrote:
> Is this similar to the following kernel configuration?
> options TCP_DROP_SYNFIN #drop TCP packets with SYN+FIN
Not at all.
The original poster is looking to drop all packets with a certain
tcp syn#, where the TCP_DROP_SYNFIN option (and you must turn on
the corresponding sysctl for it to be enabled) drops all packets
with both the "syn" and "fin" flags set.
functionally equivalent to:
ipfw add drop tcp from any to any tcpflags syn,fin
--
Bill Fumerola - Network Architect, BOFH / Chimes, Inc.
[EMAIL PROTECTED] / [EMAIL PROTECTED]
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
