On Thu, 1 Jul 2004, Antony Stone wrote: > > > No, that's true for Windows systems. Unix machines (Linux included) > > > use high-port numbered UDP packets. > > > > > Actually UDP based traceroute uses ports in the range 33434-33523. > > That's one of things I like about this mailing list - I can find people who > are even more precise and pedantic than I am :) It's from Building Internet Firewalls by Chapman & Zwicky :-). We have been using the corresponding rule for ages. It failed for HPUX only because we used unclean matching as well and the old one did not know about the fact that UDP checksumming is not mandatory. [unclean match has been fixed since then, of course.] Can't be repeated enough time, your tireless valuable help on the list is highly appreciated! (And your sigs are simply great! :-) Best regards, Jozsef - E-mail : kadlec@xxxxxxxxxxxxxxxxx, kadlec@xxxxxxxxxxxxxxx PGP key : http://www.kfki.hu/~kadlec/pgp_public_key.txt Address : KFKI Research Institute for Particle and Nuclear Physics H-1525 Budapest 114, POB. 49, Hungary
