Hi, On Thu, 2 May 2002, Oskar Andreasson wrote:
> Just to make sure that I'm not wrong, I assume that we traverse from > state NONE to TIME_WAIT in case we pick up an already established and > running connection which is just about to close. In such case, we go > from NONE to TIME_WAIT or CLOSE, correct me if I'm wrong? Yes, exactly. Connection tracking is separated from filtering. The goal is to keep track of the connection, as perfectly as possible. So when the first packet is a non-SYN-only, we assume an already established connection and depending on the flags (ACK/FIN/RST) we assume ESTABLISHED, TIME_WAIT or CLOSE state. Regards, Jozsef - E-mail : [EMAIL PROTECTED], [EMAIL PROTECTED] WWW-Home: http://www.kfki.hu/~kadlec Address : KFKI Research Institute for Particle and Nuclear Physics H-1525 Budapest 114, POB. 49, Hungary
