(ps: i _suppose_ that i've not the defrag module because i've "fragmented" message in my output: i've checked MF bit and fragment offset field and they "say" to me that the packet is fragmented...so...) On Sat, Sep 4, 2010 at 8:31 PM, Nicola Padovano <nicola.padovano@xxxxxxxxx> wrote: >> iptables -f? ip6tables -m frag? They already exist :) > > yes i know, but the mine is only an exercise... > >> The mangle table does already receive defragmented packets (if defrag >> module is loaded). >> > i don't load the defrag module, so the packet is not you defragmented: > infact the output says "fragmented"... > the problem is: why there are some frag with the same frag off? > > > -- > Nicola Padovano > e-mail: nicola.padovano@xxxxxxxxx > web: http://npadovano.altervista.org > -- Nicola Padovano e-mail: nicola.padovano@xxxxxxxxx web: http://npadovano.altervista.org -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
