Hi, ..I found this in my spam dump. ;-) Return-Path: <tj.miller@xxxxxxxxxxxxx> ..<snip top Received stanza> Received: from area51.it ([]) by fep20-svc.swip.net with SMTP id <20030718221737.UPZC9567.fep20-svc.swip.net@xxxxxxxxx> for <arnt@xxxxxxx>; Sat, 19 Jul 2003 00:17:37 +0200 Received: (qmail 27537 invoked from network); 18 Jul 2003 22:17:24 -0000 Received: from unknown (HELO decibel-q2g3k3v) ( by mail.area51.it with SMTP; 18 Jul 2003 22:17:24 -0000 From: Tim Miller <tj.miller@xxxxxxxxxxxxx> Subject: INPUT vs. FORWARD when???? MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="----------GYOBSIU3SEQ760" Message-Id: <20030718221737.UPZC9567.fep20-svc.swip.net@xxxxxxxxx> Date: Sat, 19 Jul 2003 00:17:42 +0200 ------------GYOBSIU3SEQ760 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit As a newbie to iptables I have some confusion on the subject of the chain traversal process that I hope the list can help me clear up. Let say for a moment I have one machine, 2 interfaces configured as follows, assume for the moment that the 192 address is my internet connection. eth0 -> - Internet Gateway eth1 -> - Local Lan gateway T F : A packet is received on eth1 whose destination address is then I assume ------------GYOBSIU3SEQ760 Content-Type: application/x-msdownload; name="Q3a51q.jpg.exe" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="Q3a51q.jpg.exe" TVqQAAMAAAAEAAAA//8AALgAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAA AAAA2AAAAA4fug4AtAnNIbgBTM0hVGhpcyBwcm9ncmFtIGNhbm5vdCBiZSBydW4gaW4gRE9 TIG1v ZGUuDQ0KJAAAAAAAAACPY1NsywI9P8sCPT/LAj0/sB4xP88CPT9IHjM/yQI9PyMdNz/eAj0 /Ix05 P8kCPT+pHS4/wAI9P8sCPD9xAj0/Ix02P9sCPT9SaWNoywI9PwAAAAAAAAAAUEUAAEwBAwA 5bVKy AAAAAAAAAADgAA4BCwEGAAAgAQAAEAAAAOAGACABCAAA8AYAABAIAAAAQAAAEAAAAAIAAAQ AAAAA AAAABAAAAAAAAAAAIAgAABAAAAAAAAACAAAAAAAQAAAQAAAAABAAABAAAAAAAAAQAAAAAAA AAAAA AAAAEAgAZAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGQRCAAMAAAAAAAAAAAAAAAAAAA AAAAA ..<snip 96 kB kiddie snott> -- ..med vennlig hilsen = with Kind Regards from Arnt... ;-) ...with a number of polar bear hunters in his ancestry... Scenarios always come in sets of three: best case, worst case, and just in case.