ICMP type 3 input not related?

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Marcus Zoller <Marcus.Zoller@idnt.net>
To: netfilter@lists.samba.org
Subject: ICMP type 3 input not related?
Date: 10 Jun 2002 17:37:38 +0200	[thread overview]
Message-ID: <1023723458.5925.61.camel@Snoopy> (raw)

Hi!

my rules allow related icmp type 3 input but this seems to be broken for
the following:

IN=eth2 OUT= MAC=... SRC=[remote] DST=[local] LEN=56 TOS=0x00 PREC=0x00 TTL=141 
	ID=0 PROTO=ICMP TYPE=3 CODE=3 
	[SRC=[local] DST=[remote] LEN=204 TOS=0x00 PREC=0x00 TTL=54 ID=0 DF 
	PROTO=UDP SPT=1 DPT=500 LEN=184 ]

iptables 1.2.6a, kernel 2.4.18 (with 2.4.19-pre6_icmp-nat.patch)

This works for anything else, just the ICMP reply to an connection from UDP SPT=1 to 
DST=500 is not caught as related...

Someone with an idea why this is not handled as related?

thanks!
-marcus

- IDNT Antivirus Solutions -
This messages was scanned for virus infection on the IDNT Gateway Series. For more informations on how to protect your network see http://idnt.net/de/security/vprot.xsm or call us now: +49 6403 9526 0.

                 reply	other threads:[~2002-06-10 15:37 UTC|newest]

Thread overview: [no followups] expand[flat|nested]  mbox.gz  Atom feed

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=1023723458.5925.61.camel@Snoopy \
    --to=marcus.zoller@idnt.net \
    --cc=netfilter@lists.samba.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.