I have an odd sort of question: How would I go about writing an extension that would cause nf to send a response packet (constructed by the extension, of course) to input that Linux normally wouldn't? (For example, sending a response to a FIN probe of an open TCP port.) Would mangling the incoming packet (swapping ip.src and ip.dst) work? Can I even perform a mangle in prerouting? (I just tried to write an extension that swapped ip.src and ip.dst but "iptables -t mangle -A PREROUTING -j" and any target seems to return "Invalid Argument")
Thanks -Titus Winters
