[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Mldonkey-users] some connections to mld dropped by iptables
From: |
Christian Lange |
Subject: |
Re: [Mldonkey-users] some connections to mld dropped by iptables |
Date: |
Fri, 21 Feb 2003 09:40:31 +0100 |
Hello Neil,
> I run my mldonkey as 8000 as the incoming TCP port, and this is open in
> the firewall (as shown by my high id and lots of connections to me on
> that port, some from lowid users).
-- snip --
> # Rule dropping TCP sessions opened prior firewall restart
> #
> $IPTABLES -N RULE_000
> $IPTABLES -A OUTPUT -p tcp ! --syn -m state --state NEW -j RULE_000
> $IPTABLES -A INPUT -p tcp ! --syn -m state --state NEW -j RULE_000
This sends all packets that don't belong to an existing connection and
don't have the SYN flag set to RULE_000. As the first packet in a new
connection must have SYN set this packet looks suspicious and is
dropped. Looks alright to me.
- Christian Lange, Berlin
--