> Let me try to explain what I mean. If I look at netstat output, I can see > things like this: > > tcp 0 0 ::ffff:192.168.1.245:25 ::ffff:202.63.164.4:53400 > ESTABLISHED > tcp 0 0 ::ffff:192.168.1.245:25 ::ffff:8.12.43.34:2616 > TIME_WAIT > tcp 12 0 ::ffff:192.168.1.245:25 ::ffff:200.198.4.21:58613 > ESTABLISHED
I think you're confused about what netstat is showing you. Here you have 3 connections which (almost certainly) were initiated **from** the IP and port in the right-hand column **to** your server in the left-hand column. The traffic going the other way (your server port 25 back to the client's random port) will be allowed by connection tracking rules. -Brad ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
