Re: kernel/1816: Repetable crashes of ipfilter code

[Camiel Dobbelaar <dobbe@xs4all.nl>]

Another workaround I found is to 'block in quick all with ipopt', since
'record route' is an IP option.

Blocking IP options is good practice on most firewalls anyway.

--
Cam

On Tue, 8 May 2001, Przemyslaw Frasunek wrote:
> I've noticed, that crash occurs only when record route packet is triggered
> by rule containing return-icmp keyword. A simple workaround is to remove
> return-icmp from rules which could match against ICMP packet.