Stateful Packet Inspection
-
Does pfsense have SPI? I see stateful packet filtering listed in the features, but that's not the same, correct?
Thx
Anna -
Just 2 terms for the same feature.
-
we do have statefull packet inspection. The firewall keep state on all connections (and these are replicated to a slave in a carp setup). This is not to be confused with layer7 application filtering.
It just means that we keep track of session startup and shutdown. So sending random packets to a host (like the internet does) whithout setting up a connection will be found in the firewall logs.
If that is what you were asking about.
-
Thanks for the replies. That cleared things up. For some reason I mistakingly thought layer7 and SPI were the same thing.