* ICMP type 3 input not related?
@ 2002-06-10 15:37 Marcus Zoller
0 siblings, 0 replies; only message in thread
From: Marcus Zoller @ 2002-06-10 15:37 UTC (permalink / raw)
To: netfilter
Hi!
my rules allow related icmp type 3 input but this seems to be broken for
the following:
IN=eth2 OUT= MAC=... SRC=[remote] DST=[local] LEN=56 TOS=0x00 PREC=0x00 TTL=141
ID=0 PROTO=ICMP TYPE=3 CODE=3
[SRC=[local] DST=[remote] LEN=204 TOS=0x00 PREC=0x00 TTL=54 ID=0 DF
PROTO=UDP SPT=1 DPT=500 LEN=184 ]
iptables 1.2.6a, kernel 2.4.18 (with 2.4.19-pre6_icmp-nat.patch)
This works for anything else, just the ICMP reply to an connection from UDP SPT=1 to
DST=500 is not caught as related...
Someone with an idea why this is not handled as related?
thanks!
-marcus
- IDNT Antivirus Solutions -
This messages was scanned for virus infection on the IDNT Gateway Series. For more informations on how to protect your network see http://idnt.net/de/security/vprot.xsm or call us now: +49 6403 9526 0.
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2002-06-10 15:37 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2002-06-10 15:37 ICMP type 3 input not related? Marcus Zoller
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox