hello; reply below. On 6/21/05, Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxxxxxx> wrote: > On Mon, 20 Jun 2005, terry l. ridder wrote: > > > while i have reservations concerning posting the output of iptables-save > > i have placed it on my web server: > > > > http://204.238.34.206/iptables-save-20jun2005.txt > > Thou salt not filter in the nat table. > there is no good reason not to filter in the nat table. > > It's in the documentation and was also countless times were written to the > list: only the first packet of every connection traverses the nat table. > there is no connection if the packet is dropped in the nat table. > > Best regards, > Jozsef > -- terry l. ridder ><>
