On 10 Aug 2000, Robert Soros wrote:
> > netstat -avnp | grep 3520
>
> but next time it *Probably* wont be on that port, how about grepping for
> 443 instead (thats a pretty good number to use since it will never be
> part of any IP address)
Sure, that'll work. It _might_ return too many lines, but it's
unlikely. My example (and I think wayne understood) used the local port
because it's probably as specific as you can be.
> Can you refer me to a document that details why masquerded connections
> are above port 60000? I have't heard of this before, nor have I noticed
> this behaviour.. curious to see why they limit themselves to only a few
> thousand ports for masqueraded connections.
> (when there could possibly be *thousands* from on the local lan)
No. I can't remember where that's officially documented at the moment,
but it is. The IP-CHAINS HOWTO document mentions it briefly. You could
of course, fill that table, but I doubt that you ever would without a
_really_ big LAN. I also understand that this limitation does not apply
to the 2.4 kernel which uses netfilter.
MSG
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
