In my logs I often find reports of dropped input packets from my DNS:53 or dropped output packets generated from localhost:25 to other mail servers. They look like these: iptables INPUT DROP IN=eth0 OUT= SRC=69.93.28.254 DST=myIP LEN=70 TOS=0x00 PREC=0x00 TTL=54 ID=0 DF PROTO=UDP SPT=53 DPT=4156 LEN=50 iptables OUTPUT DROP IN= OUT=eth0 SRC=myIP DST=219.136.64.239 LEN=87 TOS=0x00 PREC=0x00 TTL=64 ID=44757 DF PROTO=TCP SPT=25 DPT=3062 WINDOW=5840 RES=0x00 ACK PSH FIN URGP=0 I thought these connections should be handled by iptables -A OUTPUT -m state --state ESTABLISHED,RELATED -j ACCEPT iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT and not dropped by the default policy. The logs show that this is not true. Why are these packets dropped? -- Gioele <dev@xxxxxxxxxxxxxxxxxxx>
