[Bug 464] state match sometimes failes RELATED,ESTABLISHED matches

bugzilla-daemon at bugzilla.netfilter.org bugzilla-daemon at bugzilla.netfilter.org
Wed May 17 12:13:26 CEST 2006


https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=464





------- Additional Comments From joerg at dorchain.net  2006-05-17 12:13 MET -------
I added
checkblock -m state --state INVALID -j LOG --log-prefix "Invalid match: "
--log-level 5
directly after the -m state --state RELATED,ESTABLISHED rule

I get many hits. The most recent examples are:
May 17 06:35:33 Redstar kernel: Invalid match: IN=ppp0 OUT= MAC=
SRC=83.6.229.113 DST=212.88.133.153 LEN=40 TOS=0x00 PREC=0x00 TTL=119 ID=17271
PROTO=TCP SPT=113 DPT=47278 WINDOW=0 RES=0x00 ACK RST URGP=0
May 17 09:36:16 Redstar kernel: Invalid match: IN=ppp0 OUT= MAC=
SRC=201.15.156.90 DST=212.88.133.153 LEN=40 TOS=0x00 PREC=0x00 TTL=49 ID=18238
PROTO=TCP SPT=113 DPT=55518 WINDOW=0 RES=0x00 ACK RST FIN URGP=0
May 17 09:37:14 Redstar kernel: Invalid match: IN=ppp0 OUT= MAC=
SRC=61.77.124.119 DST=212.88.133.153 LEN=40 TOS=0x00 PREC=0x00 TTL=110 ID=33521
PROTO=TCP SPT=113 DPT=47544 WINDOW=0 RES=0x00 ACK RST URGP=0

I did not try the website where the change from http to https triggers it.

If you need more information just tell.

-- 
Configure bugmail: https://bugzilla.netfilter.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.



More information about the netfilter-buglog mailing list