[Firehol-support] udp probes
Redeeman
redeeman at metanurb.dk
Thu Nov 17 13:10:54 GMT 2005
On Thu, 2005-11-17 at 12:18 +1100, Rick Marshall wrote:
> quick question. as i understand it the udp ports above 1024 can be
> dropped if they are incoming new services (unless i set up a service on
> one of course).
>
> and this applies for tcp as well? ie the snat code uses an unused port
> above 1024 and the response will not be a "NEW" packet.
>
as far as i know, you can block any port unless you want to use it
> thanks
>
> rick
More information about the Firehol-support
mailing list