REDIRECT differences in 2.6.12.2
Patrick McHardy
kaber at trash.net
Fri Jul 8 03:03:22 CEST 2005
Dirk Morris wrote:
> notice how the syn/ack comes from eve instead of bob, and it only
> matches 1 packet (the SYN I assume)
> I suspect the syn/ack isnt matching in the conntrack table for some reason?
> Could it be because the syn is marked, but the syn/ack isnt?
No, that doesn't affect association with a conntrack entry. Please retry
after doing "echo 255 > /proc/sys/net/ipv4/netfilter/ip_ct_log_invalid"
and "modprobe ipt_LOG".
Regards
Patrick
More information about the netfilter-devel
mailing list