is there a way to discriminate the ESTABLISHED traffic?

Georgi Alexandrov tehlists at hotpop.com
Mon Apr 4 11:00:29 CEST 2005


Guido Lorenzutti wrote:

> How can i discriminate the traffic that my firewall is answering from 
> a NEW request from a network from the ESTABLISHED traffic that my 
> firewall is making from a NEW request from him?
>
> In rules, to allow traffic TO my box from the lan 10.0.0.0/32
>
> 1 ipt -A INPUT -s 10.0.0.0/32 -m state --state NEW -j ACCEPT
> 2 ipt -A INPUT -s 10.0.0.0/32 -m state --state ESTABLISHED -j ACCEPT
> 3 ipt -A OUTPUT -d 10.0.0.0/32 -m state --state ESTABLISHED -j ACCEPT
>
> Now, to allow traffic FROM my box to the lan 10.0.0.0/32
>
> 4 ipt -A OUTPUT -d 10.0.0.0/32 -m state --state NEW -j ACCEPT
> 5 ipt -A OUTPUT -d 10.0.0.0/32 -m state --state ESTABLISHED -j ACCEPT
> 6 ipt -A INPUT -s 10.0.0.0/32 -m state --state ESTABLISHED -j ACCEPT
>
> The 3 and 5 rules are exactly the same. Is there a way to discriminate 
> this or the things are just like this and there is nothing to do about 
> it?
>
> Tnxs in advance.
>
>
btw 10.0.0.0/32 ?!



More information about the netfilter mailing list