Hi All
I have a Firewall/NAT box running IPtables using Log & Drop.
My question is: Is it normal to get local addresses, it seems just Phones and Pads connected on wireless, to be dropped as --state INVALID. DROP:
FORWARD Pkt Invalid: is my -log-prefix for the forward chain --state INVALID rule
Quote:
DROP: FORWARD Pkt Invalid: IN=eth0 OUT=eth1 SRC=10.70.71.136 DST=216.58.209.100 LEN=79 TOS=0x00 PREC=0x00 TTL=63 ID=43379 DF PROTO=TCP SPT=37631 DPT=443 WINDOW=408 RES=0x00 ACK PSH FIN URGP=0 OPT (0101080A014BA55B696CB2E0)
|