A better place for MASQ-specific questions is the MASQ list
http://www.indyramp.com/masq/
Yes, IPCHAINS uses 4096 ports (61000-65095) in remapping MASQ
hence the rules to let these ports back in
The remote system port can not be altered, but a local MASQ request
will most likely have it's source port remapped; that source port
becomes the destination port for the response. As in any NAT system
the firewall maintains a mapping list
(internal host/port, remote host/port, protocol)
^
|
v
(external host/port, remote host/port, protocol)
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
