Security Considerations for IP Fragment Filtering
RFC 1858, “Security Considerations for IP Fragment Filtering”, is an Informational document published in October 1995 by G. Ziemba, D. Reed, P. Traina. It has since been updated by RFC 3128. The canonical text is published by the RFC Editor.
Abstract
IP fragmentation can be used to disguise TCP packets from IP filters used in routers and hosts. This document describes two methods of attack as well as remedies to prevent them. This memo provides information for the Internet community. This memo does not specify an Internet standard of any kind.
What “Informational” means
Published for the general information of the community. It does not define an IETF standard and carries no standards-track status.
The canonical text of RFC 1858 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 1857 A Model for Common Operational Statistics
- RFC 1859 ISO Transport Class 2 Non-use of Explicit Flow Control over TCP RFC1006 extension
- RFC 1856 The Opstat Client-Server Model for Statistics Retrieval
- RFC 1860 Variable Length Subnet Table For IPv4
- RFC 1855 Netiquette Guidelines
- RFC 1861 Simple Network Paging Protocol - Version 3 -Two-Way Enhanced
- RFC 1854 SMTP Service Extension for Command Pipelining
- RFC 1862 Report of the IAB Workshop on Internet Information Infrastructure, October 12-14, 1994