On 02/20/2006 11:30 PM, Clist wrote: > It is needed to do '-j NOTRACK' in order to avoid conntracking for some > packets, or i can simply DROP packets on the raw table so they do not reach > other netfilter tables and so it is not conntracking for those packets..? Just drop them. The drop occurs immediately.
