From mboxrd@z Thu Jan 1 00:00:00 1970 From: Chee Yong TAN Subject: Re: Sending back out A TCP Packet from netfilter Date: Tue, 24 Feb 2004 15:00:19 +0800 Sender: netfilter-devel-admin@lists.netfilter.org Message-ID: <403AF683.2060905@hotmail.com> References: <403AB462.6080404@hotmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Cc: netfilter-devel@lists.netfilter.org Return-path: To: Henrik Nordstrom In-Reply-To: <403AB462.6080404@hotmail.com> Errors-To: netfilter-devel-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Unsubscribe: , List-Archive: List-Id: netfilter-devel.vger.kernel.org Additional information regarding unable to sending back out thru lo interface my module hooks on 2 netfilter hooks NF_IP_LOCAL_IN and NF_IP_POST_ROUTING I did see the reply packet going out via the POST_ROUTING hook and coming back via the LOCAL_IN hook Note: There is extensive logging in my module looking at the network headers. The header information do not seems to have any problem. POST_ROUTING - orginal packet LOCAL_IN - orginal packet POST_ROUTING - reply packet LOCAL_IN - reply packet both tcpdump and my application failed to receive the changed packet. i even tried flushing off my iptables to get rid of all the rules and set back the policy to ACCEPT for all chains The application running from another subnetwork connecting to my machine works perfectly fine (with iptables firewalling rules turned on)...