On Fri, 22 Feb 2002, Allen wrote:
>
>
> I could be very wrong here, but it sounds like you have created a loop
> with your IPTables rules somehow.
>
> Seems like your "modified" packets are being inserted as new packets
> and thus they are going through IPTables AGAIN.
>
> Therefore you see them again.
>
Check out the bullet numbered 4. I suspect that it refers to the above
problem and provides ways of solving it.
http://netfilter.samba.org/unreliable-guides/netfilter-hacking-HOWTO/
I suspect it has some thing to do with the conn-track. So may be it has to
be updated before changing the packet beyond recognition.
> No ?
>
> That's what it sounds like anyway... or this...
>
> With LIBIPQ it seems like you need to SET_VERDICT() on each packet.
>
> Are you sure you are doing that ?
>
> Otherwise the packet may timeout and the "other end" will send it again.
>
> Got some code and some example rules you are using ?
>
> That would help... right now I may be horrendously confused about what
> you're up against.
>
