[Bug 96] New: Some ICMP replies marked as invalid.

bugzilla-daemon@netfilter.org bugzilla-daemon@netfilter.org
Sun, 01 Jun 2003 11:10:39 +0200


https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=96

           Summary: Some ICMP replies marked as invalid.
           Product: netfilter/iptables
           Version: linux-2.4.x
          Platform: All
        OS/Version: Debian GNU/Linux
            Status: NEW
          Severity: normal
          Priority: P2
         Component: ip_tables (kernel)
        AssignedTo: laforge@netfilter.org
        ReportedBy: afu@fugmann.dhs.org
                CC: netfilter-buglog@lists.netfilter.org


The rule:
 	iptables -I OUTPUT -m state --state INVALID -j DROP
results in ICMP replies to tracetoute being dropped.
(all other chains empty with policy accept).



------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.