I've a laptop, behind a linux firewall (slackware 8 2.4.18 iptables 1.2.6)
This laptopexites to Internet by NAT. (the nat works)
the problem is that sometimes (randomly) I receive "Connection Reset by
Peer" hitting most famous site... (just as cisco.com microsoft.com
kernel.org etc. etc.)
Here the rules
${IPTABLES} -A POSTROUTING -t nat -s $laptop -d 0/0 -o eth0 -j MASQUERADE
after that i give in INPUT chain this rules:
${IPTABLES} -N STEALTH
${IPTABLES} -A STEALTH -j DROP
${IPTABLES} -A INPUT -p tcp -m tcp --tcp-flags FIN,SYN FIN,SYN -j STEALTH
${IPTABLES} -A INPUT -p tcp -m tcp --tcp-flags FIN,PSH,URG FIN,PSH,URG -j
STEALTH
${IPTABLES} -A INPUT -p tcp -m tcp --tcp-flags SYN,RST,ACK NONE -j STEALTH
${IPTABLES} -A INPUT -p icmp --icmp-type ! redirect -j DROP
${IPTABLES} -A INPUT -p igmp -j DROP
${IPTABLES} -A OUTPUT -p icmp --icmp-type destination-unreachable -j DROP
can this rules broke http connection ? (I don't think so)
Can be a 2.4.18 problem ?
when I was using 2.4.17 no problem....
What potential reason can be that gives me "connection reset by peer" ?
