Hi all - I need to examine each of the packets in the HTTP stream in my firewall. After checking out the excellent IPTables Tutorial, I'm thinking that I need to use the POM to put in tcp-window-tracking. Currently, just the initial socket opens are being checked and correctly sent to the QUEUE target. I would like to have all packets in the TCP stream sent to the queue target, and I would like to make sure that this will cause the firewall to do just this for traffic between clients and our internal web server. If not, I appologise for the silly post and request a pointer in the correct direction. Cheers, Paul
