[Bug 464] state match sometimes failes RELATED,ESTABLISHED matches

bugzilla-daemon at bugzilla.netfilter.org bugzilla-daemon at bugzilla.netfilter.org
Thu May 18 21:07:34 CEST 2006


------- Additional Comments From joerg at dorchain.net  2006-05-18 21:07 MET -------
Yes, it does:
May 18 20:36:45 Redstar kernel: Invalid match: IN=ppp0 OUT= MAC=
SRC= DST= LEN=52 TOS=0x00 PREC=0x00 TTL=60 ID=35499 DF
PROTO=TCP SPT=35742 DPT=49165 WINDOW=9190 RES=0x00 ACK RST URGP=0 

I am confused about this in several ways:
- unknown src and dst port
- The webbrowser is on the internal site of the NAT. Nevertheless filter sees it
with the outside IP as dst. The outgoing interface should be eth1.

Any more ideas to debug this further? I can also provide tcpdumps if that helps.

Configure bugmail: https://bugzilla.netfilter.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You reported the bug, or are watching the reporter.

More information about the netfilter-buglog mailing list