[32656] in Kerberos
Re: UDP and fragmentation
daemon@ATHENA.MIT.EDU (Casper H.S. Dik)
Mon Sep 13 16:01:05 2010
From: "Casper H.S. Dik" <Casper.Dik@Sun.COM>
Date: 13 Sep 2010 11:02:00 GMT
Message-ID: <4c8e04a8$0$41112$e4fe514c@news.xs4all.nl>
X-Complaints-To: abuse@xs4all.nl
To: kerberos@mit.edu
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
Victor Sudakov <vas@mpeks.no-spam-here.tomsk.su> writes:
>Then what is Microsoft talking about?
Through the wrong orifice?
Clearly, middleware boxes can fail to forward
such packets and host based firewalls may discard
such packets; but that would be wrong.
Unless you want to inspect the whole packet, a
firewall can safely forward the second and later
packets as dropping the first packet makes sure
it never gets reassembled.
Casper
--
Expressed in this posting are my opinions. They are in no way related
to opinions held by my employer, Sun Microsystems.
Statements on Sun products included here are not gospel and may
be fiction rather than truth.
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
