Tom Eastep wrote:
I'm trying to keep up with this thread while at the same time following a distributed training exercise on another monitor. During the lunch break, I got a chance to look at what Ray wrote more closely :-)
Ah -- yes, now I see what you are getting at. Yet, it's apparently not working....
One other thing to remember is that because Netfilter tracks (ip,protocol[,port]), it usually doesn't have to remap ports the way that ipchains does. So the external port shouldn't change when the peers switch from sending to the server to sending to their opposite.
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
Shoreline, \ http://www.shorewall.net
Washington USA \ [EMAIL PROTECTED]
-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
