Packets passing trough...

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Output from iptables -L -nvx

---
Chain FORWARD (policy ACCEPT 161696 packets, 47270419 bytes)
     pkts      bytes target     prot opt in     out     source               destination
    61547  6434012             all  --  *       eth1    192.168.0.0/24       !192.168.1.0/24
    59305 36440468             all  --  eth1    *       !192.168.1.0/24       192.168.0.0/24
    20358  1239485             all  --  *       eth1    192.168.1.0/24       !192.168.0.0/24
    20322  3148918             all  --  eth1    *      !192.168.0.0/24        192.168.1.0/24
     3241   561174             all  --  *       *       194.106.188.0/28      192.168.0.0/24
       42     5260             all  --  *       *       194.106.188.0/28      192.168.1.0/24
---

How is this possible, wouldn't all packets match first 4 rules and never get to 6 and 7?
Interface eth1 goes to internet (snat is on) and eth0 and eth2 are LAN (192.168.0.0 and 192.168.1.0)
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux