strange MS visits
Craig Routledge
webstuff-MKqfGmd6cJs0gtvRndBQZNBPR1lH4CV8 at public.gmane.org
Sat Dec 4 16:57:16 UTC 2004
On Thu, 2 Dec 2004, William Park wrote:
> > > > pass *only* packets that have the SYN bit set...
> >
> > Once I accept the packet with SYN bit set, doesn't IPTable consider any
> > subsequent packets ESTABLISHED or RELATED (otherwise, previously
> > "seen")? Or, is IPTable smart enough to know that remote is requesting
> > TCP connection which is in the middle of being established?
On 12/04/2004 01:16:52 AM, Henry Spencer wrote:
> It's been a long time since I looked at setting this up with iptables...
> don't know the answer to that one offhand. I'm sure there's a way to
> tell it not to get clever -- to give you filtering of each and every
> packet -- but I don't remember how.
As I recall, processing of the rules stops when it encounters the first
match -- unless you use an option in the rule to do otherwise. So it
should be possible as long as the custom rule appears before the
ESTABLISHED or RELATED rule.
--
The Toronto Linux Users Group. Meetings: http://tlug.ss.org
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://tlug.ss.org/subscribe.shtml
More information about the Legacy
mailing list