|
|
- Packet filters look at each packet as it flows through the box, deciding whether to accept or reject them.
- Most common filters reject ICMP, UDP, and incoming SYN/no-ACK packets that initiate an incoming connection.
- Simple packet filters are implemented in most routers, and increasingly, OSes.
- Transparent to users, requiring no additional software or configuration on client workstations.
- Suceptible to IP spoofing.
|
