I can understand the inability to send (reset) packets out of the span interface. But what I am puzzled with is that there is no log of the said packets either. Siva ________________________________________ From: Iceman [mailto:iceman.linux@xxxxxxxxx] Sent: Thursday, April 26, 2007 2:57 AM To: Krishnamoorthy (Siva) Sivakumar Subject: Re: Iptables rule on span traffic IMHO sometimes, switches and other Layer2/3 network devices block sent traffic on SPAN port; this could explain because tcp-reset fail. Iceman
