Vadim Rapp
asked on
Firewall Rule UDP - what is send/receive and such?
When creating an access rule for a firewall, UDP traffic can be specified as Send, Receive, Send/Receive or Receive/Send. Can someone provide or reference the definition of each, and how to select the right one for a given access rule?
ASKER
> the send/receive and receive/send are exactly the same as above but allow a response to return back through the filters.
if it's connectionless, how does it know it's the response? maybe just timing coincidence?
if it's connectionless, how does it know it's the response? maybe just timing coincidence?
ASKER
however, send is ALSO inbound OR outbound when the source is ISA itself.receive is ALSO inbound OR outbound when the destination is ISA itself.
Didn't quite follow this one, could you clarify a little, maybe with example.ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks, I see.
Re. being on the wrong side of the table - I guess EE's intent was exactly the _exchange_, rather than assisting the illiterate...
Re. being on the wrong side of the table - I guess EE's intent was exactly the _exchange_, rather than assisting the illiterate...
lol - hardly. Just used to seeing you answering questions rather than asking them :)
Bear in mind that UDP is a connectionless protocol, so unlike tcp which has the three-way handshake to establish communications, udp has to have a different method of working.
For ISAS rules, it operates from the standpoint that you are sitting inside the ISA server.....
for example.
send is outbound from inside to external
receive is from external to internal
however, send is ALSO inbound OR outbound when the source is ISA itself.
receive is ALSO inbound OR outbound when the destination is ISA itself.
the send/receive and receive/send are exactly the same as above but allow a response to return back through the filters.
Hope that clarifies a little?
Keith