tag:blogger.com,1999:blog-7997313029981170997.post3958991155974112436..comments2010-08-17T12:05:12.477-04:00Jon Jensenhttp://www.blogger.com/profile/18273388885281263476noreply@blogger.comBlogger4125tag:blogger.com,1999:blog-7997313029981170997.post-49304716374852268942010-08-17T12:05:12.477-04:002010-08-17T12:05:12.477-04:00I&#39;m sure it must be allowing some invalid packets, though I don&#39;t know the details. I&#39;m not very worried about it because the Linux networking stack probably just ignores them.<br /><br />Yes, it should be fixed on the Cisco box, but good luck getting Cisco to do that. Apparently others have tried. :)Jon Jensenhttp://www.blogger.com/profile/18273388885281263476noreply@blogger.comtag:blogger.com,1999:blog-7997313029981170997.post-33265458472194009992010-08-16T03:23:54.809-04:002010-08-16T03:23:54.809-04:00Do you know if this has any impact on security, in terms of invalid packet attacks? This &#39;be liberal&#39; sounds like it allows certain types of invalid packets.<br /><br />Also I think this should be fixed on the cisco, thats the box giving out the &#39;invalid&#39; packets? (mind you I have zero experience with cisco boxes, its easier to say than do ;) ). <br /><br />Thanks for the post though, you&#39;ve put it in easy to understand terms!Big dognoreply@blogger.comtag:blogger.com,1999:blog-7997313029981170997.post-64639432656318356072010-04-07T17:14:17.703-04:002010-04-07T17:14:17.703-04:00Glad to hear it helped, Pat!Jon Jensenhttp://www.blogger.com/profile/18273388885281263476noreply@blogger.comtag:blogger.com,1999:blog-7997313029981170997.post-86891029492558607902010-04-07T15:59:36.000-04:002010-04-07T15:59:36.000-04:00Woah. This finally resolved a problem we were having with an otherwise flawless Linux firewall box I&#39;ve been using in my lab.<br /><br />Thanks for putting this out there.Pat Morinhttp://www.blogger.com/profile/06328185728688465505noreply@blogger.com