Re: iptables in 2.4.10, 2.4.11pre6 problems

From: Trever L. Adams (
Date: Tue Oct 09 2001 - 12:30:14 EST

On Tue, 2001-10-09 at 13:07, Jeffrey W. Baker wrote:
> I see this too. iptables is refusing packets on locally-initiated TCP
> connections when the RELATED,ESTABLISHED rule should be letting them
> through.
> I mentioned this problem on the netfilter list but my message fell into
> a black hole and was apparently beyond the horizon of the developers.
> -jwb

Maybe I misunderstand you, define locally-initiated. Do you mean net or
do you mean box? Mine happens on connections made by the firewall
(proxy for web) and on other connections initiated internally. We
currently only allow identd and a few others from external (identd is
spoofed more or less).

I am glad I am not the only one seeing this problem. I have the
established, related as well. The only thing that should be dropped
before it gets handled is certain ICMP messages (if someone thinks I am
dropping something I shouldn't, let me know) and windows networking
datagrams (used to keep the line up from internal machines, so I killed

The big problems I have are a few websites and (all
services... web, mail, etc.).

Trever Adams

Do You Yahoo!?
Get your free address at

To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to
More majordomo info at
Please read the FAQ at

This archive was generated by hypermail 2b29 : Mon Oct 15 2001 - 21:00:26 EST