> One last question. If I just blindly accept all non-SYN packets at the
end
> of a chain, will someone still be able to send a packet through without
the
> SYN flag set and get through the firewall?
If you have a kernel > 2.2.11 or are reassembling fragmented packets in
theory no.
If your firewall forward to your internal LAN a packet without a SYN and no
connection was established, this TCP packet is going to be dropped. Of
course there are probabilities of Ipspoofing or hijacking attacks.
Eduardo
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
