Isn't this connection tracking, the work of the module ip_conntrack? Won't this module automatically track these connections and allow the return packets? If not, then can u tell me what this module does?
PS: Thanks for your reply --- Jonathan Hodd <[EMAIL PROTECTED]> wrote: > $IPTABLES -A FORWARD -m state --state > ESTABLISHED,RELATED -j ACCEPT > > would allow stuff to come back from an outgoing > connection. > > -----Original Message----- > From: Javed Shakeel > [mailto:[EMAIL PROTECTED]] > Sent: 11 April 2002 09:32 > To: [EMAIL PROTECTED] > Subject: Connection Tracking > > > Suppose the default policy of my FORWARD chain in > the > filter table is DROP > > I am not using MASQUERADING. > > Now if allow the internal network to send packets to > the external network on UDP port 80. > > The question is do we need to specify another rule > to > enable the reply from the external network to a > request made by some user in the internal network? > Or is there a connection tracking mechanism which > does > that automatically? > > > __________________________________________________ > Do You Yahoo!? > Yahoo! Tax Center - online filing with TurboTax > http://taxes.yahoo.com/ __________________________________________________ Do You Yahoo!? Yahoo! Tax Center - online filing with TurboTax http://taxes.yahoo.com/
