Hi, I have a utility which uses iptables and captures the incoming packets on INPUT chain of filter table. I am getting a wierd problem, the incoming TCP segments start getting rejected due to incorrect checksum by my utility. I took tcpdump on ethernet interface and loopback interface, the segments on ethernet interface are fine, but by the time they are passed on to my application by iptables using ip_queue, the packets are corrupted. The TCP payload gets reset to zeroes, and thus my application when verifies the checksum, discards the segment on finding it incorrect. Surprisingly it happens only with segments greater than 200bytes in length. This problem is driving me crazy. Any help will be more than welcome. I have red hat enterprise linux 4, with kernel 2.6.9-42 and iptables version 1.2.11 thanks varun -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
