On Thu, May 13, 2010 at 6:47 PM, Markus Feldmann <feldmann_markus@xxxxxx> wrote: > Hi All, > > i am still experiment with iptables and the state extension. Some of my > rules shall catch packets with the state NEW, but it doesn't catch all > packets. Sometimes there are packets that have the SYN Flag set which go > through my rules with the state NEW. > > Any idea why? > I thought SYN is included in the state NEW, is that wrong? > > What is the difference between SYN and NEW? > > regards Markus > > -- > To unsubscribe from this list: send the line "unsubscribe netdev" in > the body of a message to majordomo@xxxxxxxxxxxxxxx > More majordomo info at http://vger.kernel.org/majordomo-info.html > Please use netfilter-users list advise of experts in netfilter . -Ratheesh . -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
