Hi, > Log message: > Add scrub option 'random-id', which replaces IP IDs with random values > for outgoing packets that are not fragmented (after reassembly), to > compensate for predictable IDs generated by some hosts, and defeat > fingerprinting and NAT detection as described in the Bellovin paper > http://www.research.att.com/~smb/papers/fnat.pdf. ok theo@ This does look like a Good Thing (TM). Can netfilter do something similar ? http://www.deadly.org/article.php3?sid=20030209221723 regards, Derkjan
