From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id EFC291381FA for ; Sat, 29 Dec 2012 18:51:40 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 84C26E062D; Sat, 29 Dec 2012 18:51:26 +0000 (UTC) Received: from mail-ea0-f176.google.com (mail-ea0-f176.google.com [209.85.215.176]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 39973E062D for ; Sat, 29 Dec 2012 18:50:16 +0000 (UTC) Received: by mail-ea0-f176.google.com with SMTP id d13so4790938eaa.35 for ; Sat, 29 Dec 2012 10:50:15 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=x-received:message-id:date:from:user-agent:mime-version:to:subject :references:in-reply-to:content-type:content-transfer-encoding; bh=nap0+FxskpI0dQqihXe5SAPPeQZyIdZn/YkoHOxZtdk=; b=0I3fRMOHYaytEcFrKonhmJ0lI4j7VeSexqoF7PvzjKLHRzZJQYdFR2x6Ld0J2F/Yxh N6G8gyzy4YPoQ/TuG5xxwjQXOIsMBgTIiztMMnr3RI834I688hwJIdzbexMFXj0Mr20A 1ZahNkhmJogAc5/hGwiRNuDse8C9dmlCVbmh2Fz45Dj/tNT9FRPGQAYqEobTymyjQvJA 7qFzZKq1wvepMwABWQxm+Yar/VT+2kOiHGpoewCmx1QidYW22XU2dx70K3rWTQG9S1Lk QcAtkSyb984exc3yHIMp9lLBwiqGcPmcd55YFTmXMQvLQjArAXCblenO2iFltB8k5Z0H 5SJg== X-Received: by 10.14.223.135 with SMTP id v7mr97077842eep.41.1356807015891; Sat, 29 Dec 2012 10:50:15 -0800 (PST) Received: from [10.0.0.11] ([88.151.72.62]) by mx.google.com with ESMTPS id 6sm73841704eea.3.2012.12.29.10.50.13 (version=TLSv1/SSLv3 cipher=OTHER); Sat, 29 Dec 2012 10:50:14 -0800 (PST) Message-ID: <50DF3B3E.2090609@gmail.com> Date: Sat, 29 Dec 2012 19:49:34 +0100 From: Jarry User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/17.0 Thunderbird/17.0 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] IPTABLES syntax change? References: <20121227004732.GB5854@waltdnes.org> <50DBA7D0.4060800@orlitzky.com> <87zk0zivjk.fsf@einstein.gmurray.org.uk> <20121227231150.GA9864@waltdnes.org> <50DCDEAF.9020002@orlitzky.com> <20121228035937.GA2949@waltdnes.org> <50DD370F.4070509@orlitzky.com> <20121229024605.GB5340@waltdnes.org> <50DE6A94.3060904@fastmail.co.uk> <20121229183221.GA6975@waltdnes.org> In-Reply-To: <20121229183221.GA6975@waltdnes.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Archives-Salt: 109f89eb-5f16-47cf-9b93-ba8e4a75c2b9 X-Archives-Hash: d067d1d164b9e368af259a050fe21a34 On 29-Dec-12 19:32, Walter Dnes wrote: > 1) I run a desktop, and use passive ftp. Is there any need for me to > accept RELATED packets? No, but you must take care of related connections. Even passive ftp opens command (>1023 -> 21) and data (>1023 -> >1023) channel. BTW, icmp-error (i.e. host unreachable) can also be connection related to some other one... Jarry -- _______________________________________________________________ This mailbox accepts e-mails only from selected mailing-lists! Everything else is considered to be spam and therefore deleted.