> >We could add a "strip-wscale" option to scrub. It doesn't solve > >the state pickup issue, but could prevent clients communicating > >through the firewall from negotiating this option. > Does the Linux NAT code already do this?
Linux's stock state code doesn't track sequence numbers. .mike
