Re: [LARTC] connection tracking

Jody Shumaker Thu, 22 Dec 2005 11:56:07 -0800

The iptables list of rules is read top to bottom, what is the problem with this? I have my script flush the table, then add everything in the order i want it in. The only case this might be a problem is where you want to insert a rule at a specific spot in the order, without flushing the table and causing it to momentarily not exist. Right now I don't think that is possible.

- Jody

On 12/18/05, Marius Corici <[EMAIL PROTECTED]> wrote:

Hello

I have some rules inserted in the NAT table dual SNAT and DNAT for a connection
They use at some moment the same port of the outside network.

The problem i have is that the connection tracking in the kernel checks first the oldest rule and then the newest one.
I use a system based on ARM XScale processor. Is that the default behaviour and how can i change this behaviour?

Marius

_______________________________________________
LARTC mailing list
[email protected]
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

_______________________________________________
LARTC mailing list
[email protected]
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

Re: [LARTC] connection tracking

Reply via email to