Hi Ramin, > Does anyone have a good solution to catch the third (ACK) packet > in a tcp connection setup?
Maybe you could use the CONNMARK patch, found in patch-o-matic? Mark the conntrack one way for the first packet of a new connection, and later match on that mark, changing it to something else when that match hits. Thanks for a nice idea from the "how do I bend iptables into a programming language" department. :-) best regards Patrick
