iptables
Lord of Gore
lordofgore at logsoftgrup.ro
Mon Dec 18 19:07:36 UTC 2006
tamer amr wrote:
> i want to know what is the deffrents between NEW and --syn
> option in the connection tracking on iptables command
>
>
> __________________________________________________
> Do You Yahoo!?
> Tired of spam? Yahoo! Mail has the best spam protection around
> http://mail.yahoo.com
>
have you read man iptables? There it says this:
NEW: " ... NEW meaning that the packet has started a new connection, or
otherwise associated with a connection
which has not seen packets in both directions ... "
syn: " ... Only match TCP packets with the SYN bit set and the ACK and
RST bits cleared ... "
i'll give you a hint: the difference consists in the "or otherwise" part...
read man pages, google and *then* ask questions on this list... You
don't want to be spoon-fed, do you?
More information about the redhat-list
mailing list