> I haven't place ESTABLISHED in it's own chain, primarily because I > haven't found a use case for ESTABLISHED rules at all. Bandwidth traffic limiting (in other words, throttling), traffic sniffing/logging/manipulating (pcap and friends). For the latter, one particularly good example is sip-related traffic (manipulating the SIP header, primarily). I could think of other uses if you are so inclined...
If there is no "use case" for ESTABLISHED, then why is it present in "rules"? One expects to add rules there and have these properly optimised - the way any other state is (or should be). Currently, this isn't the case (even in RC2). ------------------------------------------------------------------------------ Free Next-Gen Firewall Hardware Offer Buy your Sophos next-gen firewall before the end March 2013 and get the hardware for free! Learn more. http://p.sf.net/sfu/sophos-d2d-feb _______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
