[ previous ] [ next ] [ threads ]
 
 From:  Manuel Kasper <mk at neon1 dot net>
 To:  macgyver at calibre dash solutions dot co dot uk
 Cc:  m0n0wall <m0n0wall at lists dot m0n0 dot ch>
 Subject:  Re: [m0n0wall] DNS Vulnerbility...
 Date:  Sat, 26 Jul 2008 23:39:33 +0200 
On 25.07.2008, at 19:03, Angus MacGyver wrote:

> Referencing
> http://www.freebsd.org/cgi/cvsweb.cgi/src/contrib/ipfilter/ip_fil.c
>
> CVS log for src/contrib/ipfilter/ip_fil.c
> ...

I've backported that ipnat source port randomization patch to  
m0n0wall's FreeBSD version (6.3-RELEASE), and also made a relatively  
important bug fix along the way (see <http://marc.info/?l=ipfilter&m=121709678805631&w=2 
 >).

It'll be in 1.3b14 (with a setting on the System: Advanced page to  
control the port range, in case anyone desires to do so).

- Manuel