El mar, 23-11-2004 a las 09:18, hamals@xxxxxxxxxxx escribiÃ: > Hello to everyone > > I'm reading "Iptables Tutorial 1.1.19" by Oskar > Andreasoon, and I cant understand these bad packets rules > > > $IPTABLES -N bad_tcp_packets > # > # > # bad_tcp_packets chain > # > $IPTABLES -A bad_tcp_packets -p tcp --tcp-flags SYN,ACK > SYN,ACK \ > -m state --state NEW -j REJECT --reject-with tcp-reset May be that you can't got the three flags on, in the same packet > $IPTABLES -A bad_tcp_packets -p tcp ! --syn -m state > --state NEW -j LOG \ > --log-prefix "New not syn:" > $IPTABLES -A bad_tcp_packets -p tcp ! --syn -m state > --state NEW -j DROP May be, if the packet haven't the syn flags on, the packet is not new > someone could explain me why that are bad tcp packets? I don't secure, but i thing that is this. regards Miguel Amador > Thanks > > _______________________________________ > Connessione ed e-mail gratuita da 10 mb > consultabile tramite web e tramite pop. > www.infinito.it vieni a scoprire tutti > i nostri servizi! > > http://www.infinito.it/xmail > >
