if iptables rules drop that packet, will they be displayed in tcpdump
Sergey Kuznetsov
tlug-9a/WvBvX2Qpg9hUCZPvPmw at public.gmane.org
Tue Nov 18 19:15:29 UTC 2003
On November 18, 2003 03:07 am, Teddy Mills wrote:
> if iptables rules drop that packet, will they be displayed in tcpdump?
> Im guessing no, since they packets dont even get in the front door.
>
Yes, they will be shown. You don't need to disable your firewall rules.
For Linux, TAP hookups calling in kernel network layer before actual TCP/IP
stack procedures, where iptables hookups calling.
In *BSD it calls right in network driver's ISR function ( which is bizzare ).
All the Best!
Serge.
--
The Toronto Linux Users Group. Meetings: http://tlug.ss.org
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://tlug.ss.org/subscribe.shtml
More information about the Legacy
mailing list