Re: [fw-wiz] Transparent proxies and PMTUD on the (WWW) server side
From: Marcus J. Ranum (mjr_at_ranum.com)
Date: 08/26/03
- Previous message: Wes Noonan: "RE: [fw-wiz] pixen abnomalities;"
- In reply to: Carson Gaspar: "Re: [fw-wiz] Transparent proxies and PMTUD on the (WWW) server side"
- Next in thread: Mikael Olsson: "Re: [fw-wiz] Transparent proxies and PMTUD on the (WWW) serverside"
- Reply: Mikael Olsson: "Re: [fw-wiz] Transparent proxies and PMTUD on the (WWW) serverside"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: Carson Gaspar <carson@taltos.org>, firewall-wizards@honor.icsalabs.com Date: Tue, 26 Aug 2003 17:22:43 -0400
>If an ALG supports transparent proxying, enables PMTUD, and does not intercept ICMP must fragment, the ALG is broken. File a high priority trouble ticket with your vendor.
If an ALG understands PMTUD and ICMP it's not an ALG, it's a packet
filter masquerading as a proxy. All that stuff is totally below application
space.
mjr.
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Previous message: Wes Noonan: "RE: [fw-wiz] pixen abnomalities;"
- In reply to: Carson Gaspar: "Re: [fw-wiz] Transparent proxies and PMTUD on the (WWW) server side"
- Next in thread: Mikael Olsson: "Re: [fw-wiz] Transparent proxies and PMTUD on the (WWW) serverside"
- Reply: Mikael Olsson: "Re: [fw-wiz] Transparent proxies and PMTUD on the (WWW) serverside"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
