Flag SYN not necessarily state NEW?

All of lore.kernel.org
 help / color / mirror / Atom feed

From: "Ing. Christian Ogris" <ogris@mazda.at>
To: netfilter@lists.samba.org
Subject: Flag SYN not necessarily state NEW?
Date: Wed, 08 May 2002 08:45:47 +0200	[thread overview]
Message-ID: <3CD8C99B.E81155B5@mazda.at> (raw)
In-Reply-To: 20020507115906.8B112471A@lists.samba.org

Good morning,

just wondering if the behavior i discovered yesterday on our iptables-
firewall is "ok":

I connect from Box A via SSH to Box B, where the firewall runs, and i
get the state "NEW" on the first packet.
Then - the first connection is still established - i connect AGAIN from
Box A to Box B and do NOT get the state "NEW" anymore. (So obviously
it's already accepted by the ESTABLISHED,RELATED -j ACCEPT rule).
Is this behavior correct?

Meaning that a (second, third, ...) connection to the firewall will 
never get the state "NEW" for the first packet when there IS already
a connection to the same port, from the same host?

		regards, Chris

next      parent reply	other threads:[~2002-05-08  6:45 UTC|newest]

Thread overview: 8+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
     [not found] <20020507115906.8B112471A@lists.samba.org>
2002-05-08  6:45 ` Ing. Christian Ogris [this message]
2002-06-14 11:17   ` Flag SYN not necessarily state NEW? Jozsef Kadlecsik
2002-06-15  2:35 Hard__warE
2002-06-15 12:33 ` Matthew Hellman
2002-06-15 14:52   ` Chris
2002-06-15 21:57 ` Jozsef Kadlecsik
2002-06-16 18:04 ` Geog Hofstetter
2002-06-16 18:30   ` Antony Stone

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=3CD8C99B.E81155B5@mazda.at \
    --to=ogris@mazda.at \
    --cc=netfilter@lists.samba.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.