Hello All, I am trying to setup iptables based firewall, following are the details.
Kernel version 2.4.18 iptables version 1.2.6 (updated by CVS) here is what i am trying to do. I have a rule which allows all stateful connections and it works fine when ever i am using -m state match support. Whenever i am trying to use the same rule with -m conntrack option it is not allowing the stateful connections. iptables -d xxx.xxx.xxx.xxx -m state --state RELATED,ESTABLISHED -j ACCEPT ( This works ) iptables -d xxx.xxx.xxx.xxx -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT ( Never worked ) doing the cat of /proc/net/ip_conntrack does shows the connection in the state connection list as ASSURED but its not getting accepted by the firewall. Yes i did compiled my kernel with connection tracking match support option and i am using all iptables options as built in to kernel. Thanks Subodh Shrivastava __________________________________________________ Do You Yahoo!? Try FREE Yahoo! Mail - the world's greatest free email! http://mail.yahoo.com/
