Douglas Rabe írta:
Greetings,
I dont understand why this traffic is dropped?
Jun 18 17:03:39 iahabs1 kernel: IN_DROP: IN=eth0 OUT= MAC=00:1c:23:ca:ec:1d:00:1b:53:87:68:c0:08:00 SRC=10.192.130.104 DST=192.168.51.1 LEN=40 TOS=0x00 PREC=0x00 TTL=119 ID=5563 DF PROTO=TCP SPT=35557 DPT=80 WINDOW=65149 RES=0x00 ACK FIN URGP=0
Because it is a FIN packet... = ! (NEW,RELATED or ESTABLISHED) but
INVALID !!!
iahabs1:~# iptables -nvL
Chain INPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
337M 82G ACCEPT 0 -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
8747 559K ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 state NEW icmp type 8
19M 2104M ACCEPT 0 -- lo * 0.0.0.0/0 0.0.0.0/0
14686 450K ACCEPT 2 -- eth0 * 0.0.0.0/0 224.0.0.0/8
26049 2169K ACCEPT 0 -- eth1 * 0.0.0.0/0 0.0.0.0/0
37255 1790K ACCEPT tcp -- eth0 * 0.0.0.0/0 0.0.0.0/0 state NEW multiport dports 80,30001
9068K 602M ACCEPT udp -- eth0 * 0.0.0.0/0 0.0.0.0/0 state NEW multiport dports 3210
0 0 ACCEPT tcp -- eth3 * 0.0.0.0/0 0.0.0.0/0 state NEW multiport dports 80,30001
91 3640 LOG 0 -- * * 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 4 prefix `IN_DROP: '
91 3640 DROP 0 -- * * 0.0.0.0/0 0.0.0.0/0
Swifty
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
