connection tracking

if you wish to read some more general information about iptables before returning, please click here.   【程序编程相关:pix515防火墙配置策略实例】

【推荐阅读:限制P2P流量一例（原创）】

connection tracking refers to the ability to maintain state information about a connection in memory tables, such as source and destination ip address and port number pairs (known as socket pairs), protocol types, connection state and timeouts. firewalls that do this are known as stateful. stateful firewalling is inherently more secure than its "stateless" counterpart .... simple packet filtering. 【扩展信息:基于freebsd5.3下 PF syn】

what is connection tracking?

connection tracking is accomplished with the state option in iptables. from the iptables manpage:

 state        this module, when combined with connection tracking, allows access to  the        connection tracking state for this packet.

• 软件资讯
• 技术指南
• 开发文档
• 编程技术
• 程序编程
• 数据库技术
• 服务器
• 项目开发
• 游戏编程

• 软件开发
• 服务器技术
• 行业资讯
• 程序相关
• 编程博文

• Notes -- Building from source
• SSL协议与数字证书原理 网络版必读
• BT软件太优秀难以镇压 MPAA欲与之化敌为友
• ipc$详细解释大全
• 被微软“深度隐藏”的文件 v2.0
• SSL VPN
• PaX本地权限提升漏洞
• [原创]用OpenVPN构建安全VPN [OpenVPN + CA] (20050305修改版本)
• 在Windows 2003/XP with SQL Server下部署Snort入侵检测系统
• 系统加固文章集锦
• CA BrightStor ARCserve Discovery SERVICEPC Overflo
• 提高Linux系统安全性的十招（二）
• 什么是网关？
• 做了件好事.
• Help Defeat Denial of Service Attacks: Step-by-Ste
• 入侵思路
• 几个好的exploit代码站点
• 去除默认共享
• Socks Chains in Windows
• Grid Computing
• 抱怨一下北京的天气
• 关于“四美图”被黑的推论之黑客帝国版.txt
• 中国客运列车旅客乘车情况问卷（A卷）
• win2000命令大全（这个似乎更全）
• AS/400系统安全