>From man 8 iptables, and the Linux 2.4 Packet Filtering HOWTO: "--state [state] Where state is a comma separated list of the connection states to match..." "Specifying `-m state' allows an additional `--state' option, which is a comma-separated list of states to match (the `!' flag indicates not to match those states). These states are..." Is this comma-separated list creating a series of AND's or OR's? Thus -m state --state INVALID,NEW is INVALID AND NEW or INVALID OR NEW? Somehow, OR seems to make more sense.. - John -- "Obviously, we do not want to leave zombies around."
