Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Firewalls that generate new packets..

From: ArkanoiD <ark () eltex net>
Date: Thu, 15 Nov 2007 01:27:00 +0300
Well, what do you actually mean?
There are plenty of ways to alter packets. Any routing device does, and
a firewall generally does even more. A firewall may also:

Terminate and initiate VPN connections, extracting packet from encapsulation
envelopes

Change header, sripping or altering some data, doing, say, tcp resequencing 

Change data portion

Terminate and initiate whole connection on clients behalf (like proxy firewalls do)

Something else that did not come to my mind yet

On Wed, Nov 14, 2007 at 02:58:37PM +1100, Kelly Robinson wrote:


   Some firewalls, after receiving a packet, generate a new packet and
   populate it with data from the original, rather than forwarding the
   same packet that was received. What are the advantages and
   disadvantages of this approach? And does anyone have any examples of
   any firewalls that do this on the market?



   Thanks



   - k

   email protected and scanned by AdvascanTM - keeping email useful -
   www.advascan.com



_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards


_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: