Re: bad tcp packets

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 




El mar, 23-11-2004 a las 09:18, hamals@xxxxxxxxxxx escribiÃ:
> Hello to everyone
> 
> I'm reading "Iptables Tutorial 1.1.19" by Oskar 
> Andreasoon, and I cant understand these bad packets rules
> 
> 
> $IPTABLES -N bad_tcp_packets
> #
> #
> # bad_tcp_packets chain
> #
> $IPTABLES -A bad_tcp_packets -p tcp --tcp-flags SYN,ACK 
> SYN,ACK \
> -m state --state NEW -j REJECT --reject-with tcp-reset

May be that you can't got the three flags on, in the same packet


> $IPTABLES -A bad_tcp_packets -p tcp ! --syn -m state 
> --state NEW -j LOG \
> --log-prefix "New not syn:"

> $IPTABLES -A bad_tcp_packets -p tcp ! --syn -m state 
> --state NEW -j DROP

May be, if the packet haven't the syn flags on, the packet is not new

> someone could explain me why that are bad tcp packets?
I don't secure, but i thing that is this.
regards

 Miguel Amador

> Thanks
> 
> _______________________________________
> Connessione ed e-mail gratuita da 10 mb
> consultabile tramite web e tramite pop.
> www.infinito.it vieni a scoprire tutti 
> i nostri servizi!
> 
> http://www.infinito.it/xmail
> 
> 




[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux