-m state ESTABLISHED, NEW etc...

tirexx Thu, 30 May 2002 07:23:38 -0700

Hi all

TCP connection flow by this scenario
Can someone explain me where pass borders of state ESTABLISHED, NEW.


1-> SYN
2<- SYN ACK
3-> ACK
connected
....
4-> ACK
5<- ACK
....
6-> FIN
7<- ACK
8<- FIN
9-> ACK
closed

I think so:
1,2,3 NEW
2,3,4,5,6,7,8,9 ESTABLISHED
2,3,4,5,6,7,8,9 RELATED

i`m wrong?


with this rules outgoing connect work
incomming connect not work
this demonstrate 2,3,4,5,6,7,8,9 = ESTABLISHED

iptables -A FORWARD -o eth_external -i eth_internal -p tcp -d
x.x.x.x --dport x -j ACCEPT
iptables -A FORWARD -i eth_external -o eth_internal -p tcp -s
x.x.x.x --sport x -m state --state ESTABLISHED -j ACCEPT

-m state ESTABLISHED, NEW etc...

Reply via email to