On Fri, May 11, 2012 at 11:13 AM, John Donoe <[email protected]> wrote: > ... > I thought I had understood that ruleset, but theres one point I simply dont > get: That TCP segments are only redirected to the port Tor listens on when > the SYN flag is set.
connection tracking (conntrack) works on new streams; when the SYN (connect) is redirected, the conntrack behavior in iptables does the rest. you can read an overview here if curious: http://people.netfilter.org/pablo/docs/login.pdf _______________________________________________ tor-talk mailing list [email protected] https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
