Re: [PLUG] fire wall question(s)

LeRoy Cressy on Wed, 27 Feb 2002 22:57:55 -0500

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] fire wall question(s)

From: LeRoy Cressy <leroy@lrcressy.com>

To: plug@lists.phillylinux.org

Subject: Re: [PLUG] fire wall question(s)

Date: Wed, 27 Feb 2002 22:57:36 -0500

Organization: L & R Associates

Reply-to: plug@lists.phillylinux.org

Sender: plug-admin@lists.phillylinux.org

"Gleeson, Francis (HT-EX)" wrote: So I guess the main point would be that a firewall is tightly integrated with the kernel and can therefore kill the packet much sooner than would happen otherwise. By the time a server daemon get the packet it has been al the way through the protocol stack. This statement is very true since the firewalling code is compiled into the kernel. Thus the packets that are destined to be dropped are destroyed before any of the other processes that might be listening for them. Thus when your firewall drops a packet it happens before init and any of the sub processes. -- Rev. LeRoy D. Cressy mailto:lcressy@telocity.com /\_/\ http://www.netaxs.com/~ldc ( o.o ) Phone: 215-535-4037 > ^ < Jesus saith unto him, I am the way, the truth, and the life: no man cometh unto the Father, but by me. (John 14:6) ______________________________________________________________________ Philadelphia Linux Users Group - http://www.phillylinux.org Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce General Discussion - http://lists.phillylinux.org/mail/listinfo/plug

References:

RE: [PLUG] fire wall question(s)
From: "Gleeson, Francis (HT-EX)" <FGleeson@GI.com>

Prev by Date: [PLUG] Linux boot and Promise Fastrak100 Raid

Next by Date: Re: [PLUG] Linux boot and Promise Fastrak100 Raid

Previous by thread: RE: [PLUG] fire wall question(s)

Next by thread: RE: [PLUG] fire wall question(s)

Index(es):

Date

Thread