On Wed, 21 Feb 2007 19:38:39 +0100 J65nko <[EMAIL PROTECTED]> wrote: > For keeping state on TCP connections you should only create state on > the first packet of the 3 way TCP handshake. Using "flags S/SA" will > ensure this. This will prevent problems with TCP windows scaling..
Why? Creating a state entry causes subsequent packets, in the same tcp connection, to bypass the rules altogether. _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
