On Sunday 16 June 2002 7:04 pm, Geog Hofstetter wrote: > hmm is it possible that (if u use target LOG) your syslog just shows up > 'blah: SYN packet received' > 'last message repeatet 2 times'
I would hope not - both the Source Port and the TCP ID number should be different for the two connections, and since these are both included in the LOG output from netfilter, the messages would not be identical... Antony. > >>On Wed, 8 May 2002, Ing. Christian Ogris wrote: > >> I connect from Box A via SSH to Box B, where the firewall runs, and > >> i get the state "NEW" on the first packet. > >> Then - the first connection is still established - i connect AGAIN > >> from Box A to Box B and do NOT get the state "NEW" anymore. (So > >> obviously it's already accepted by the ESTABLISHED,RELATED -j ACCEPT > >> rule). Is this behavior correct?
