On Tue, May 07, 2002 at 12:17:23PM +0200, Williamson, Fionn wrote: > Hi All,
Hi, > Can anybody PLEASE tell me: > > 1. if the sequence numbers are actually used in iptables to MAINTAIN the > state of a connection, or if it is merely used to ESTABLISH connections, > and thereafter ignored. No, they aren't used actually in stock kernel. If you want them to be used you have to apply the "tcp-window-tracking" patch from the patchomatic. > 2. point me towards documentation confirming or denying this. The patch in the patchomatic itself http://cvs.samba.org/cgi-bin/cvsweb/netfilter/userspace/patch-o-matic/extra/tcp-window-tracking.patch?rev=1.1&content-type=text/x-cvsweb-markup and its documentation : http://cvs.samba.org/cgi-bin/cvsweb/netfilter/userspace/patch-o-matic/extra/tcp-window-tracking.patch.help?rev=1.1&content-type=text/x-cvsweb-markup Denis Ducamp. -- [EMAIL PROTECTED] --- Herv� Schauer Consultants --- http://www.hsc.fr/ Owl/Openwall/snort/hping/dsniff en fran�ais http://www.groar.org/trad/ Owl en fran�ais http://www.openwall.com/Owl/fr/ Du bon usage de ... http://usenet-fr.news.eu.org/fr-chartes/rfc1855.html
