Le dim 27/04/2003 à 00:59, Robert P. J. Day a écrit : > i'm sure this is a simple one to answer. aside from the more > complex protocols like FTP that require special handling, once i > configure iptables to accept RELATED,ESTABLISHED, will this cover > all of TCP, UDP and ICMP? that is, if i'm not protocol-specific? Yes it will cover _all_ protocols that will be handled by conntrack. That can be of cours TCP, UDP and ICMP, but can also be others, such as GRE as an example. -- Cédric Blancher <blancher@xxxxxxxxxxxxxxxxxx> IT systems and networks security - Cartel Sécurité Phone : +33 (0)1 44 06 97 87 - Fax: +33 (0)1 44 06 97 99 PGP KeyID:157E98EE FingerPrint:FA62226DA9E72FA8AECAA240008B480E157E98EE
