[techtalk] Default Deny
Wendt,Andrew
awendt at neo.rr.com
Thu Jan 27 23:14:19 EST 2000
On Thu, 27 Jan 2000, Brian Engle wrote:
>there are several different arguements for and against stateful(REJECT) and
>stateless(DENY) firewalls, and many other many other mailing lists used to
>debate which is better/worse and why.....
The response returned by the firewall doesn't relate to whether it is a
stateless or a stateful firewall. A stateless firewall looks at each packet
individually to decide what to do with it. A stateful firewall can do that, but
can also use info from previous packets to determine what to do. For example, a
stateful firewall can keep track of all the connections opened through it, and
only allow packets that are part of an existing connection.
TTFN
Andy
************
techtalk at linuxchix.org http://www.linuxchix.org
More information about the Techtalk
mailing list