On Saturday 06 July 2002 11:49 pm, Patrick Petermair wrote: > Am Sonntag, 7. Juli 2002 00:03 schrieb Antony Stone: > > What are the logging rules on your firewall ?
[ ....... ] > #FWD: Allow all connections OUT and only existing and related ones IN > $IPTABLES -A FORWARD -i $EXTIF -o $INTIF -m state --state > ESTABLISHED,RELATED -j ACCEPT > $IPTABLES -A FORWARD -i $INTIF -o $EXTIF -j ACCEPT > $IPTABLES -A FORWARD -j LOG Hmmm. Not so different from mine, really, and I don't get any log entries when I visit that site. Can you run ethereal and capture the complete session to see whether, for example, there are multiple FIN packets at the end of the session ? The log entry you posted has both FIN and ACK set, so I presume it's the very last packet at the end of the connection...? Antony.
