James Seymour: > > The TCP stack sends an outbound ACK|RST because it received > > *something* on port 25. Your firewall should not have passed that. > > Should not have passed it *incoming*, do you mean?
Indeed (assuming that ipfilter actually tracks state in the exact
same way as the TCP stack, which is an assumption that may not
be valid).
Wietse
