Are you receiving any errors when iptables loads your rules? When I changed
to 2.4.18 a few commands no longer worked. Like MIRROR. Just a thought.
Brian
>
> the problem is that sometimes (randomly) I receive "Connection Reset by
> Peer" hitting most famous site... (just as cisco.com microsoft.com
> kernel.org etc. etc.)
>
> Here the rules
>
> ${IPTABLES} -A POSTROUTING -t nat -s $laptop -d 0/0 -o eth0 -j MASQUERADE
>
> after that i give in INPUT chain this rules:
> ${IPTABLES} -N STEALTH
> ${IPTABLES} -A STEALTH -j DROP
> ${IPTABLES} -A INPUT -p tcp -m tcp --tcp-flags FIN,SYN FIN,SYN -j STEALTH
> ${IPTABLES} -A INPUT -p tcp -m tcp --tcp-flags FIN,PSH,URG FIN,PSH,URG -j
> STEALTH
> ${IPTABLES} -A INPUT -p tcp -m tcp --tcp-flags SYN,RST,ACK NONE -j STEALTH
> ${IPTABLES} -A INPUT -p icmp --icmp-type ! redirect -j DROP
> ${IPTABLES} -A INPUT -p igmp -j DROP
> ${IPTABLES} -A OUTPUT -p icmp --icmp-type destination-unreachable -j DROP
>
>
> can this rules broke http connection ? (I don't think so)
> Can be a 2.4.18 problem ?
> when I was using 2.4.17 no problem....
> What potential reason can be that gives me "connection reset by peer" ?
