On Tue, 6 Aug 2002, Links at Momsview wrote:
> Tom,
> I''m not sure if you ever saw this document but it describes some
of the
> reasons you are seeing strange packets
> after setting up NEW not SYN
>
http://www.linuxsecurity.com/resource_files/firewalls/IPTables-Tutorial/ipta
> bles-tutorial.html#NEWNOTSYN
>
> If the section titled " State NEW packets but no SYN bit set"
doesn''t appear
> do a search for "feature in iptables".
>
> It describes a bug in the Microsoft IP stack that can cause these packets.
>
I had code for a while that dropped those ACK FIN packets without
logging them but I decided that most people won''t set LOGNEWNOTSYN and
if
they do, they deserve to see the whole ugly story.
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
AIM: tmeastep \ http://www.shorewall.net
ICQ: #60745924 \ teastep@shorewall.net
