|
|
发表于 2005-4-19 15:12:13
|
显示全部楼层
Connection Tracking
Requires state module (-m state).
Packet STATES:
NEW = A new connection
ESTABLISHED = Packet is part of an existing connection
RELATED = Packet is related to an existing connection (e.g. ICMP error messages)
INVALID = Packet doesn't belong to any other connection
Tracking FTP Connections:
Because of the nature of the FTP protocol, tracking ftp connections requires a special kernel module: ip_conntrack_ftp. If you wish to use NAT with ftp connection tracking, you must also load the ip_nat_ftp kernel module |
|
IP卡
狗仔卡
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
显身卡
楼主