The other ports are the source ports used on the firewall. For example
in the first line of output (the TCP connection from your original
message):
The "connection" from the client is not actually established
192.168.0.2:3276 --> 167.216.237.108:80
instead it is masqueraded as
firewall:63030 --> 167.216.237.108:80
Restated, the masquerading makes the TCP connection look like is is
coming from the firewall box on port 63030. When packets come back to
the firewall on port 63030, they are re-addressed and sent to the client
on port 3276. The firewall port number is how the kernel keeps track of
which
packets go where.
I hope that clears it up for you.
- Bob Glover
> Date: Mon, 15 Jan 2001 06:24:41 -0000
> To: "Red Hat Mailing List" <[EMAIL PROTECTED]>
> Subject: ipchains -M -L output
> From: "Peter Kiem" <[EMAIL PROTECTED]>
> Reply-To: [EMAIL PROTECTED]
>
> Got a question on the output of the command "ipchains -M -L"
>
> For example:
> prot expire source destination ports
> TCP 14:44.99 192.168.0.2 167.216.237.108 3276 (63030) -> 80
> UDP 00:03.90 192.168.0.2 203.22.70.2 3241 (62990) -> 53
>
> I understand the source and dest addresses and the port number after the "->"
> but what are the other ports listed?
>
> --
> Regards,
> +-----------------------+---------------------------------+
> | Peter Kiem | E-Mail : <[EMAIL PROTECTED]> |
> | Zordah IT | Mobile : +61 0414 724 766 |
> | IT Consultancy & | WWW : www.zordah.net |
> | Internet Hosting | ICQ : "Zordah" 866661 |
> +-----------------------+---------------------------------+
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
