Hy,
if I'm trying to use state match with the above mentioned statement to
allow only established and/or related connections, but also new
connections get through!
Full statement is:
iptables -A FORWARD -i $INTERNAL_INTERFACE -o
$EXTERNAL_INTERFACE -p tcp --source-port 1025:65500 --destination-port
1025:65500 -m state --state ESTABLISHED,RELATED -s $LAN -j ACCEPT
with the (naturally) the reverse statement for incoming connections. If
I use this statement also connections initiated from a port >1024 to a
port > 1024 comes through the firewall not only a related or established
one! Anybody any ideas?
Greetings Michael
