Re: stateful inspection firewall
From: Cedric Blancher (blancher_at_cartel-securite.fr)
Date: 10/27/03
- Next message: Daniel Hartmeier: "Re: stateful inspection firewall"
- Previous message: Dario: "stateful inspection firewall"
- In reply to: Dario: "stateful inspection firewall"
- Next in thread: Greg Hennessy: "Re: stateful inspection firewall"
- Reply: Greg Hennessy: "Re: stateful inspection firewall"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Mon, 27 Oct 2003 17:12:09 +0100
Dans sa prose, Dario nous ecrivait :
> Does anybody know if the IPTables firewalling subsystem is a real stateful
> inspection one, like OpenBSD Packet Filter or Cisco PIX, or it is just a
> connection tracking firewall which just checks for connection ports and IP
> addresses?
Netfilter does not track TCP window such as pf. However, you can add this
feature using a patch distributed with iptables patch-o-matic.
> Is it somewhere available a recent and updated comparison in
> performance and feutures between IPTables and Packet Filter?
Dunno, but very interested ;)
-- Lu sur alt.france : Peut-on installer Win 95 par dessus win 95 tout en gardant les differents données des logiciels fonctionnant auparavant sur wwin 95 ? -+- JMT in : Guide du neuneu d'Usenet - Neuneu persiste et signe -+-
- Next message: Daniel Hartmeier: "Re: stateful inspection firewall"
- Previous message: Dario: "stateful inspection firewall"
- In reply to: Dario: "stateful inspection firewall"
- Next in thread: Greg Hennessy: "Re: stateful inspection firewall"
- Reply: Greg Hennessy: "Re: stateful inspection firewall"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
