Hello, Markus Feldmann a écrit : > So NEW means the IP was never seen before and the SYN flag means, that a > new connection begins? So the first packet from a source adress is NEW > whether or nor it has the SYN flag set ? Not exactly. The connection tracking works per connection, not per source address. NEW means that the packet belongs to a connection that was not seen by the connection tracking before. SYN (without RST nor ACK) means that the packet purpose is to start a new TCP connection, but it could be a duplicate SYN for an already established connection. > If this is the case, than i need only the SYN flag to let establish > incoming connection to my apache-Server? It depends on your needs. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
