[Bug 464] state match sometimes failes RELATED,ESTABLISHED matches
bugzilla-daemon at bugzilla.netfilter.org
bugzilla-daemon at bugzilla.netfilter.org
Wed Jul 12 03:10:35 CEST 2006
https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=464
------- Additional Comments From netfilter at linuxace.com 2006-07-12 03:10 MET -------
Joerg - the invalid packet you receive:
Jul 8 21:45:14 Redstar kernel: Invalid match: IN=ppp0 OUT= MAC=
SRC=217.10.79.19 DST=212.88.133.153 LEN=52 TOS=0x00 PREC=0x00
TTL=58 ID=52725 DF PROTO=TCP SPT=37618 DPT=49443 WINDOW=9904
RES=0x00 ACK RST URGP=0
matches the tcpdump:
21:45:14.470885 IP 217.10.79.19.37618 > 212.88.133.153.49443: R
3969071728:3969071728(0) ack 3348563057 win 9904 <nop,nop,timestamp 82982227
1164171085>
I cannot say why the host attempts to reset the connection using a different and
seemingly random port instead of 443 as it should, but it is definitely invalid
and netfilter is right to complain.
If that is the only problem (a remote host which seems braindead), then the
problem lies with that host, not with netfilter.
--
Configure bugmail: https://bugzilla.netfilter.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You reported the bug, or are watching the reporter.
More information about the netfilter-buglog
mailing list