> Are these two rules essentially the same ? no, they're not. > Thanks, > Mike > > iptables -A FORWARD -i eth2 -o eth0 -m state --state > NEW,ESTABLISHED,RELATED -j ACCEPT for traffic from eth2 over eth0 this rule is not restricted at all > > iptables -A FORWARD -i eth2 -o eth0 -p tcp --dport 2000:2050 -m > state --state NEW,ESTABLISHED,RELATED -j ACCEPT this rule restricts to proto tcp and to destination ports 2000:2050 I just don't know what you neet the related for here. new,established does the job. Philipp
