[prev in list] [next in list] [prev in thread] [next in thread] 

List:       netfilter
Subject:    Re: Questions about the workings of iptables
From:       Ashutosh Naik <ashutosh () teneoris ! com>
Date:       2004-07-28 4:12:04
Message-ID: opsbtxeefvsueqbq () 192 ! 168 ! 1 ! 10
[Download RAW message or body]

On Tue, 27 Jul 2004 15:22:40 +0100, Antony Stone 
<Antony@Soft-Solutions.co.uk> wrote:

> On Tuesday 27 July 2004 2:41 pm, John A. Sullivan III wrote:
>
>> On Tue, 2004-07-27 at 03:20, Ashutosh wrote:
>> > > No.   AFAIK the connection tracking in netfilter checks only src+dst
>> > > IP+port,
>> > > nothing else.
>> >
>> > .. And the Protocol
>>
>> and I would assume there is a timer - John
>
> Oh yes, there are timers, but that's not part of the information from the
> original packet which gets matched in future packets, which is what I was
> discussing, and what I think the original question was about (!?).

Yes, What actually get matched is only the 5 tuples.. 
srcIP+destIP+srcport+destport+Protocol



-- 
Ashutosh Naik
Teneoris Networks India Pvt. Ltd.

[prev in list] [next in list] [prev in thread] [next in thread]