From mboxrd@z Thu Jan 1 00:00:00 1970 From: Sertys Subject: Re: mysterious dropped echo replies Date: Wed, 1 Jun 2005 08:43:38 +0000 (UTC) Message-ID: References: <1117528956.25434.65.camel@athene.bestsolution.at> <1117539228.25434.82.camel@athene.bestsolution.at> <20050601022233.GA6992@bender.817west.com> Mime-Version: 1.0 Content-Transfer-Encoding: quoted-printable Return-path: Date: Thu, 02 Jun 2005 15:58:12 +0300 In-Reply-To: <20050601022233.GA6992@bender.817west.com> List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Sender: netfilter-bounces@lists.netfilter.org Errors-To: netfilter-bounces@lists.netfilter.org Content-Type: text/plain; format="flowed"; delsp="yes"; charset="us-ascii" To: Netfilter list My bad..... On Tue, 31 May 2005 22:22:33 -0400, Jason Opperisano =20 wrote: > On Wed, Jun 01, 2005 at 06:21:44PM +0300, Sertys wrote: >> Well , this line : >> iptables -t nat -A Cid3D99741E.0 -d 192.168.100.0/24 -j RETURN >> >> change it to -j DROP and it wont generate any replies. -j RETURN, =20 >> returns >> the packet and sends and icmp message to the src! > > RETURN returns the packet to the calling chain, or enforces the > root chain's POLICY if there is no calling chain to return to. > your description matches what REJECT does, not RETURN. > > -j > > -- > "Stewie: Damn the toilet. It's made slaves of you all. It just > sits there consuming other people's feces while contributing nothing > of its own to society." > --Family Guy --=20 www.supportivo.org I can't stop myself checking for pigs in the outlets. Everybody thinks i'= m =20 a punk, cause of the hairstyle(220V). end