[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: PF and Raptor SMTP gateway incompatible?

To: mike@rockynet.com (Mike Lewinski)
Subject: Re: PF and Raptor SMTP gateway incompatible?
From: Darren Reed <avalon@coombs.anu.edu.au>
Date: Sat, 15 Jun 2002 05:40:07 +1000 (Australia/ACT)
Cc: saad@docisland.org (Saad Kadhi),marco@radzinschi.com (Marco Radzinschi), misc@openbsd.org

In some mail from Mike Lewinski, sie said:
> 
> I think I've tracked this down.... it's also visible under ipfilter on a 2.9
> box with very generic configs. For readability the sample IPs below have
> been replaced with 'openbsd' and 'raptor'.
[...]

Ah, so it is "this" product which is causing the problem!

There are other threads about dealing with it in the misc archives.
If you have a "block return-rst in proto tcp ..." (without flags S)
type rule, the 1st connection will fail but the 2nd will succeed.

I've updated IPFilter to better deal with this situation - so long
as you have a "block return-rst in" type rule.

Darren

Follow-Ups:
- Re: PF and Raptor SMTP gateway incompatible?
  - From: Marco Radzinschi <marco@radzinschi.com>

References:
- Re: PF and Raptor SMTP gateway incompatible?
  - From: "Mike Lewinski" <mike@rockynet.com>

Prev by Date: Re: Fixing misc@
Next by Date: Re: PF and Raptor SMTP gateway incompatible?
Prev by thread: Re: PF and Raptor SMTP gateway incompatible?
Next by thread: Re: PF and Raptor SMTP gateway incompatible?
Index(es):
- Date
- Thread