In the cluster model, is it possible that IP traffic is coming in one host, being sent via the memory channel interconnect to the other and replies then exiting it ?
e.g. sender--<SYN>->[hostA]--(SYN via interconnect)-->[hostB]--<SYN+ACK>-->sender well, that's not a good diagram...but... IPFilter as yet isn't cluster aware, so at this point, you'd need to rewrite your ruleset without "keep state" rules. Darren
