Jan Engelhardt schrieb:
You could combine --syn with --ctstate NEW. That may be
considered a bonus (though I admit I don't do so myself).
Hi Jan,
Nice idea. :-) Could this be a Problem?
As long as i do not redirect the ports, like i did with my Apache-server
from 80 to 443, it should work to combine --syn with --ctstate NEW ?
However it should be more safety to change from --syn to --ctstate NEW
for all rules?
regards Markus
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
