All Questions
4
questions
0
votes
1
answer
38
views
Why does it go through netfilter postrouting when visiting local ports?
Environment:
[root@VM-32-4-centos ~]# uname -r
3.10.0-514.26.2.el7.x86_64
I have set log printing in the following chain:
[root@VM-32-4-centos ~]# iptables -A INPUT -p tcp --dport 8000 -j LOG --log-...
1
vote
0
answers
796
views
UDP packets dropped with `ctstate=INVALID`, but meanwhile its connection `[ASSURED]` in conntrack list
I have my router connecting to a remote VPS as so-called 'VPN' that is based on UDP protocol, then the VPS traffic slows down in few seconds after a new reboot.
I can see a huge amount of incoming ...
1
vote
0
answers
430
views
iptables DNAT traffic to localhost weird behavior
I hit a problem when trying to understand how iptables handles DNATed packet..
I run a server at localhost:8000, and I added a rule to nat table:
-A OUTPUT -d 1.2.3.4/32 -p tcp -m tcp --dport 80 -j ...
1
vote
1
answer
1k
views
Conntrack empty within a Docker container
Does anyone of you have experience with the use of conntrack in a containerized environment? I am running a regular alpine docker container with docker run --network bridge --privileged --cap-add all -...