question on flags

question on flags

[Leonardo Rodrigues Magalhães]

    Hello People,

    In normal situations, which would be the flags for SYN packets and 
FIN packets of a tcp stream ?? I'm thinking of, in some few ports, log 
the beggining of the connection (SYN) and the end of the connection 
(FIN). I also know I should treat RST packets, because in problems 
situations i will never see FIN.

    So, can you point me what tcp-flag combinations to look for ?

    Thanks for the answers and for the attention.

-- 


	Atenciosamente / Sincerily,
	Leonardo Rodrigues
	Solutti Tecnologia
	http://www.solutti.com.br

	Minha armadilha de SPAM, NÃO mandem email
	gertrudes@solutti.com.br
	My SPAMTRAP, do not email it

Re: question on flags

[Jorge Davila]

You can find a good explanation an examples here:

http://iptables-tutorial.frozentux.net/iptables-tutorial.html

Jorge Dávila.

El sáb, 28-01-2006 a las 21:31 -0300, Leonardo Rodrigues Magalhães
escribió:
>     Hello People,
> 
>     In normal situations, which would be the flags for SYN packets and 
> FIN packets of a tcp stream ?? I'm thinking of, in some few ports, log 
> the beggining of the connection (SYN) and the end of the connection 
> (FIN). I also know I should treat RST packets, because in problems 
> situations i will never see FIN.
> 
>     So, can you point me what tcp-flag combinations to look for ?
> 
>     Thanks for the answers and for the attention.
> 
-- 
-----------------------------------------------------------------
Jorge Isaac Davila Lopez
-
sitio web: http://www.nicaraguaopensource.com/
correo-e: davila@cablenet.com.ni
-----------------------------------------------------------------