On Wednesday 2010-04-28 19:59, Steve Fink wrote: > >From the iptables manpage, in the description of the nat table: "This >table is consulted when a packet that creates a new connection is >encountered." > >I don't know what mechanism makes related packets in an established >connection follow the translation actions set up by the initial >packets. There's a magic sheep bit in there somewhere. A ct entry with mappings already exists when a related packet shows up, so there is no need to do a relookup in the table. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
