Re: connection tracking

Linux Advanced Routing and Traffic Control

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

The iptables list of rules is read top to bottom, what is the problem with this? I have my script flush the table, then add everything in the order i want it in. The only case this might be a problem is where you want to insert a rule at a specific spot in the order, without flushing the table and causing it to momentarily not exist.  Right now I don't think that is possible.

- Jody

On 12/18/05, Marius Corici <coricim@xxxxxxxxx> wrote:
Hello

I have some rules inserted in the NAT table dual SNAT and DNAT for a connection
They use at some moment the same port of the outside network.

The problem i have is that the connection tracking in the kernel checks first the oldest rule and then the newest one.
I use a system based on ARM XScale processor. Is that the default behaviour and how can i change this behaviour?

Marius

_______________________________________________
LARTC mailing list
LARTC@xxxxxxxxxxxxxxx
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc



_______________________________________________
LARTC mailing list
LARTC@xxxxxxxxxxxxxxx
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
[Index of Archives]     [LARTC Home Page]     [Netfilter]     [Netfilter Development]     [Network Development]     [Bugtraq]     [GCC Help]     [Yosemite News]     [Linux Kernel]     [Fedora Users]
  Powered by Linux