On Sun, 21 Jul 2002, Joerg Dahlem wrote:
> got a problem concerning CIPE 1.5.4 and 1.5.3 with iptables from Kernel
> 2.4.18-5 The UDP packets _sent_ by CIPE seem to bypass the complete
> firewall code. At least I am not able to catch them with rules...
I cannot second that. I have a cipe-tunnel using port 20002:
1155 106K ACCEPT udp -- ppp+ * 0.0.0.0/0 0.0.0.0/0 udp spt:20002
As you see the rule catches. I have kernel 2.4.13, but that shouldn't
matter. Probably another rule or your default policy catches.