James Seymour: > > The TCP stack sends an outbound ACK|RST because it received > > *something* on port 25. Your firewall should not have passed that. > > Should not have passed it *incoming*, do you mean?
Indeed (assuming that ipfilter actually tracks state in the exact same way as the TCP stack, which is an assumption that may not be valid). Wietse