Hi, I asked iptables to log all inbound connection attempts: iptables -I INPUT 1 -d myipaddress -m state --state NEW -j LOG I then asked conntrack to report the same events: conntrack -E --event-mask NEW -d myipaddress I assumed the above were equivalent but conntrack does not report the same events as iptables, it seems to miss unsuccessful connections. I'd be grateful if anyone could tell me what's going on... How can I get conntrack to report everything that iptables does? Thanks, P -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html