Yea, I read all that. What I was really after was, is it that big of a deal that IPTables "employs connection tracking without any sequence number analysis for packets outside of the initial TCP handshake." Did IPTables not implement this because it was not needed or is it something that hasn't been gotten around to yet?
Dusty
