Le ven 31/10/2003 à 13:17, Michael Renzmann a écrit : > > You're able to do anything you want, as you have to explicitly implement > > which traffic you do not want to track. Suppose your local IP is > > A.B.C.D, then doing something like this should do the trick : > > iptables -t raw -A PREROUTING -d ! A.B.C.D -j NOTRACK > > Do this to exclude all traffic destined to local box. > You mean "not destined to the local box", right? :) I do mean "destined to the local box". You exclude from NOTRACK target al traffic destined to the local box, meaning you include it in conntrack ;))) We do agree, for sure. -- http://www.netexit.com/~sid/ PGP KeyID: 157E98EE FingerPrint: FA62226DA9E72FA8AECAA240008B480E157E98EE >> Hi! I'm your friendly neighbourhood signature virus. >> Copy me to your signature file and help me spread!
