Le dim 12/10/2003 à 19:53, richard lucassen a écrit : > Ok, but that does not answer my question ;-) Maybe I'm not so clear > in saying what I mean. Let me put it this way: Does the > ESTABLISHED,RELATED rule of the FORWARD chain handles all > ESTABLISHED,RELATED packets of a connection which was accepted as NEW in > a "child" chain? I think the answer is finally "yes". Well, because I di not really answer this very question, the answer is yes, because packet state does not depend on rules. I mean a packet is flaged with its state and carries this within all Netfilter framework, regardless rules and chains. So, if a packet is ESTABLISHED, then it is ESTABLISHED all the way, regardless prior NEW packet as been matched (or not) in a builtin or user chain. Rules have no effect on state. -- http://www.netexit.com/~sid/ PGP KeyID: 157E98EE FingerPrint: FA62226DA9E72FA8AECAA240008B480E157E98EE
