Why does iptables drop packets when there is a rule to accept them

Solution Verified - Updated -

Issue

  • iptables has a rule to accept traffic, but there are messages logged for packets being dropped.

Environment

  • Red Hat Enterprise Linux 5
  • iptables rules to allow traffic
-A RH-Firewall-1-INPUT -i bond0 -m state --state NEW,RELATED,ESTABLISHED -p tcp --sport 80 -j ACCEPT
  • packets being logged as dropped by iptables.
kernel: Dropped by firewall input: IN=bond0 OUT= MAC=00:17:a4:77:50:bc:70:81:05:61:0e:20:08:00 SRC=X.X.X.X DST=X.X.X.X LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=7741 DF PROTO=TCP SPT=80 DPT=44213 WINDOW=6 RES=0x00 ACK FIN URGP=0

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content