Unfortunately, IPCHAINS does not have this capability. This is known as a "stateful" firewall because it knows about existing connections.
The good news is that IPTABLES which is delivered with Redhat 7.1, 7.2 and other linux distributions does have this capability. It is known as connection tracking. On Fri, Nov 09, 2001 at 11:46:28AM -0500, Sam Mabjish wrote: > > Hi, > I am using Linux IPCHAINS version 1.3.8. > I am having trouble coming up with rules to DENY > sessions originating somewhere on the Internet > outside my network. > But at the same time, I do NOT want to DENY traffic > coming back to my network for sessions that originated > from machines on my network. > I do not know if this function is available in IPCHAINS. > Can it be done? > Can you please help!! > What syntax should I use? > Thank you in advance > > _______________________________________________ > Firewalls mailing list > [EMAIL PROTECTED] > http://lists.gnac.net/mailman/listinfo/firewalls _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
