Pressed R instead of L :(
Replying to Joakim Axelsson:
Are you doing any NAT? Some of the state in -m conntrack are now some other
state.
Yes, I'm DNATing, but according to conntrack sources, as far as I can see,
new states (SNAT, DNAT) are |= (bitwise ored) to statebits and if I leave
other
On Thu, Apr 18, 2002 at 04:41:08AM -0700, Ben Reser wrote:
The problem with this is sooner or later this field would wrap and your
match would work right.
I meant wouldn't. This is what happens when I write emails at 4 am.
--
Ben Reser [EMAIL PROTECTED]
http://ben.reser.org
What difference
Hi
I am finding that if I put a -j QUEUE target in the middle of a set of rules the
rest of the rule do NOt get hit.
Does -j QUEUE ether accepts or drops the packet there?
How do you have a packet continue with the rest of ther rules after the QUEUE
target?
Shaun
On Thu, Apr 18, 2002 at 08:22:57AM +0200, Patrick Schaaf wrote:
Hi Joakim all,
We (me and Martin) has discussed a table, border, that is the absolutly
first thing that is being travered after leaving the netcard driver.
I like the idea (a lot!), as well as the placement, but I'm not
Hi All,
Today we create a connection tracking entry for every
new packet that we see, whether valid, invalid or
even for one that will be dropped in future by filter.
Is there an advantage in this design approach?
Does it make sense not to create these entries so that
an intruder is not able to
