no problems loading rules.
----- Original Message -----
From: "Brian Witowski" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, March 18, 2002 9:35 PM
Subject: RE:iptables, 2.4.18 and HTTP Connection
> Are you receiving any errors when iptables loads your rules? When I
changed
> to 2.4.18 a few commands no longer worked. Like MIRROR. Just a thought.
>
> Brian
>
> >
> > the problem is that sometimes (randomly) I receive "Connection Reset by
> > Peer" hitting most famous site... (just as cisco.com microsoft.com
> > kernel.org etc. etc.)
> >
> > Here the rules
> >
> > ${IPTABLES} -A POSTROUTING -t nat -s $laptop -d 0/0 -o eth0 -j
MASQUERADE
> >
> > after that i give in INPUT chain this rules:
> > ${IPTABLES} -N STEALTH
> > ${IPTABLES} -A STEALTH -j DROP
> > ${IPTABLES} -A INPUT -p tcp -m tcp --tcp-flags FIN,SYN FIN,SYN -j
STEALTH
> > ${IPTABLES} -A INPUT -p tcp -m tcp --tcp-flags FIN,PSH,URG
FIN,PSH,URG -j
> > STEALTH
> > ${IPTABLES} -A INPUT -p tcp -m tcp --tcp-flags SYN,RST,ACK NONE -j
STEALTH
> > ${IPTABLES} -A INPUT -p icmp --icmp-type ! redirect -j DROP
> > ${IPTABLES} -A INPUT -p igmp -j DROP
> > ${IPTABLES} -A OUTPUT -p icmp --icmp-type destination-unreachable -j
DROP
> >
> >
> > can this rules broke http connection ? (I don't think so)
> > Can be a 2.4.18 problem ?
> > when I was using 2.4.17 no problem....
> > What potential reason can be that gives me "connection reset by peer" ?
>
>
>
