On Tue, 7 May 2002, Williamson, Fionn wrote: > 1. if the sequence numbers are actually used in iptables to MAINTAIN the > state of a connection, or if it is merely used to ESTABLISH connections, > and thereafter ignored.
Sequence numbers are checked when the tcp-window-tracking patch is applied from patch-o-matic. Otherwise sequence numbers are *used* only when the mangling of those is required (ftp/irc/etc NAT helpers). > 2. point me towards documentation confirming or denying this. The documentation states nowhere that sequence number would be used to check wether the packets belongs to a TCP session. Regards, Jozsef - E-mail : [EMAIL PROTECTED], [EMAIL PROTECTED] WWW-Home: http://www.kfki.hu/~kadlec Address : KFKI Research Institute for Particle and Nuclear Physics H-1525 Budapest 114, POB. 49, Hungary
