Re: Stateful packet inspection

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Is that what he;s looking for? really? the more I read this the more I get the impression he might be talking about an application proxy. A better definition on the information being sought might be in order, though, I get the impression that clarification might not be easy here <smile>.

And by application proxy, I mean something that does more then merely identify the application, but also enforces a 'policy' on the traffic <i.e. it understand what is allowed in the transaction and limits traffic to that context>.

Thanks,

Ron DuFresne



Yes,

what you are actually looking for is a filter for applications that send
packets through your firewall => so called LAYER 7 FILTER! Why layer 7 - see
OSI Layer model.

Regards,

Edvin Seferovic

-----Original Message-----
From: netfilter-bounces@xxxxxxxxxxxxxxxxxxx
[mailto:netfilter-bounces@xxxxxxxxxxxxxxxxxxx] On Behalf Of Maxime Ducharme
Sent: Freitag, 04. März 2005 19:45
To: netfilter@xxxxxxxxxxxxxxxxxxx
Subject: Re: Stateful packet inspection


Yes I am not sure of the exact word for
"Layer 7 filter"

Someone can confirm this ?

TIA

Maxime Ducharme
Programmeur / Spécialiste en sécurité réseau

----- Original Message -----
From: "Daniel Lopes" <lopsch@xxxxxxxxxx>
To: <netfilter@xxxxxxxxxxxxxxxxxxx>
Sent: Friday, March 04, 2005 11:03 AM
Subject: Re: Stateful packet inspection


I thought SPI means inspecting packets for their state i.e. NEW or
ESTABLISHED. What you mean is a Layer 7 filter, the link to it was
posted above ;).




- -- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
admin & senior security consultant: sysinfo.com
http://sysinfo.com

...Love is the ultimate outlaw.  It just won't adhere to rules.
The most any of us can do is sign on as it's accomplice.  Instead
of vowing to honor and obey, maybe we should swear to aid and abet.
That would mean that security is out of the question.  The words
"make" and "stay" become inappropriate.  My love for you has no
strings attached.  I love you for free...
                        -Tom Robins <Still Life With Woodpecker>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFCKODest+vzJSwZikRAtj+AJsGbvFDX/dInImayYAPgpRMP5us4gCffJL/
yV3dgeJO46t9ecOTSqaOq/E=
=xCIt
-----END PGP SIGNATURE-----
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux