From mboxrd@z Thu Jan  1 00:00:00 1970
From: Mart Frauenlob <mart.frauenlob@chello.at>
Subject: Re: netfilter missing interface name
Date: Mon, 15 Feb 2010 10:37:54 +0100
Message-ID: <4B7915F2.2020406@chello.at>
References: <4B79119E.9090506@iit.bme.hu>
Reply-To: netfilter@vger.kernel.org
Mime-Version: 1.0
Content-Transfer-Encoding: 7bit
Return-path: <netfilter-owner@vger.kernel.org>
In-Reply-To: <4B79119E.9090506@iit.bme.hu>
Sender: netfilter-owner@vger.kernel.org
List-ID: <netfilter.vger.kernel.org>
Content-Type: text/plain; charset="us-ascii"
To: netfilter@vger.kernel.org
Cc: nemeth.denes@iit.bme.hu

On 15.02.2010 10:27, netfilter-owner@vger.kernel.org wrote:
> Hi
> 
> The INPUT chain looks like the following:
> 
> pkts bytes target     prot opt in     out     source              
> destination
>  35  3235 LOG_DROP   all  --  pub    *       0.0.0.0/0          
> !1.2.3.4      [goto]
>   0  0    LOG_ACC    tcp  --  *      *       127.0.0.1           
> 127.0.0.1           state NEW tcp dpt:3000
> 
> The following packet is dropped:
> 
> IN= OUT=lo SRC=127.0.0.1 DST=127.0.0.1 LEN=60 TOS=0x10 PREC=0x00 TTL=64
> ID=31349 DF PROTO=TCP SPT=35130 DPT=3000 WINDOW=32792 RES=0x00 SYN URGP=
> 
> which was the cause of executing the "telnet localhost 3000" command
> The "pub" interface is a physical ethernet card.
> 
> Why is the "IN=" blanc?
> Why does the packet match to the first rule?
> How is it possible to match only to the second rule?
> 
> Thanks Denes


Looks like this is dropped in the OUTPUT chain. It never reaches the
INPUT chain.

Best regards

Mart