Re: [Mldonkey-users] some connections to mld dropped by iptables

mldonkey-users

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Mldonkey-users] some connections to mld dropped by iptables

From:	Goswin Brederlow
Subject:	Re: [Mldonkey-users] some connections to mld dropped by iptables
Date:	01 Mar 2003 08:16:07 +0100
User-agent:	Gnus/5.0808 (Gnus v5.8.8) XEmacs/21.4 (Portable Code)

Neil Sedger <address@hidden> writes:

> I'm constantly - one every few seconds - getting firewall drop
> messages from iptables that look like:
> 
> 
> 
> Feb 21 01:19:52 giles kernel: RULE -1 - DROP: IN=ppp0 OUT= MAC=
> SRC=<some inet ip> DST=<my internet ip> LEN=40 TOS=0x00 PREC=0x00
> TTL=118 ID=47465 DF PROTO=TCP SPT=1729 DPT=8000 WINDOW=17280 RES=0x00
> ACK FIN URGP=0
> 
> 
> Feb 21 01:53:12 giles kernel: RULE -1 - DROP: IN=ppp0 OUT= MAC=
> SRC=<some inet ip> DST=<my internet ip> LEN=121 TOS=0x00 PREC=0x00
> TTL=49 ID=13664 DF PROTO=TCP SPT=3560 DPT=8000 WINDOW=64240 RES=0x00
> ACK PSH FIN URGP=0

I believe this to be a bug in the kernel.

The ACK [PSH] FIN flags indicate that this is a tcp frame closing a
connection. As far as I could figure out the kernel already thinks the
connection is closed and doesn't have the connect in its conntrack
tables anymore. Neigther matching for state ESTABLISHED nor owner
pid/uid works.

But I wouldn't worry about it. The packet is telling you that
connection has been closed successfully, which your kernel already
knows.

MfG
        Goswin

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Mldonkey-users] some connections to mld dropped by iptables, Goswin Brederlow <=

Prev by Date: Re: AW: mld 2.02-16 with MTU 1500 | was: [Mldonkey-users] FYI: CVS2.02-16
Next by Date: Re: [Mldonkey-users] more requests
Previous by thread: Re: AW: mld 2.02-16 with MTU 1500 | was: [Mldonkey-users] FYI: CVS2.02-16
Next by thread: Re: [Mldonkey-users] more requests
Index(es):
- Date
- Thread