[Snort-inline-users] snort_inline & yahoo mesanger

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

Hello ,
  I saw a problem with my snort, when I use : iptables -A FORWARD -p tcp -j QUEUE to redirect Internet traffic ( originated from my MS-ISA Proxy/NAT server ) to snort daemon , users are able to login in their Yahoo Messangers and receive offline message but they can't send IM to outside or each other ( all other traffic included ftp,https,ssh,telnet,http,.... are ok )   , in fact all traffic to Yahoo servers to --dport : 5050 will have problem until I use : iptables -A FORWARD -p tcp --sport 1024:65000 --dport 5050 -j ACCEPT ( and  vice versa from --sport 5050  to --dport 1024:65000 ) , 
  Would you plz let me know what's the problem ?

---------------------------------
 Yahoo! Mail
 Use Photomail to share photos without annoying attachments.