[Comm] nat не настроен в iptables а всеравно работает

Igo-aeroflot =?iso-8859-1?q?igo_=CE=C1_aeroflot-don=2Eru?=
Чт Апр 17 07:57:37 MSD 2003 

1 Я останавливаю iptables
    service iptables stop
    service iptables status
    Chain INPUT (policy ACCEPT)
    target     prot opt source               destination
    Chain FORWARD (policy ACCEPT)
    target     prot opt source               destination
    Chain OUTPUT (policy ACCEPT)
    target     prot opt source               destination
2 потом конектюсь к ftp://ftp.altlinux.ru b смотрю /proc/net/ipcontract

tcp      6 431995 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=32768 dport=3493 src=127.0.0.1 dst=127.0.0.1 sport=3493 dport=32768 [ASSURED] use=1 mark=0 
tcp      6 430995 ESTABLISHED src=192.168.89.3 dst=192.168.89.1 sport=3023 dport=993 src=192.168.89.1 dst=192.168.89.3 sport=993 dport=3023 [ASSURED] use=1 mark=0 
tcp      6 431951 ESTABLISHED src=192.168.89.3 dst=81.222.130.6 sport=3027 dport=21 src=81.222.130.6 dst=80.80.122.40 sport=21 dport=3027 [ASSURED] use=2 mark=0 
tcp      6 34 SYN_SENT src=192.168.89.3 dst=62.118.250.7 sport=3026 dport=21 [UNREPLIED] src=62.118.250.7 dst=80.80.122.40 sport=21 dport=3026 use=1 mark=0 
udp      17 25 src=80.80.122.40 dst=192.48.79.30 sport=32779 dport=53 src=192.48.79.30 dst=80.80.122.40 sport=53 dport=32779 [ASSURED] use=1 mark=0 
udp      17 20 src=80.80.122.40 dst=194.226.96.30 sport=32779 dport=53 src=194.226.96.30 dst=80.80.122.40 sport=53 dport=32779 [ASSURED] use=1 mark=0 
udp      17 131 src=80.80.122.40 dst=195.112.96.132 sport=32779 dport=53 src=195.112.96.132 dst=80.80.122.40 sport=53 dport=32779 [ASSURED] use=1 mark=0 
udp      17 24 src=80.80.122.40 dst=81.211.1.234 sport=32779 dport=53 src=81.211.1.234 dst=80.80.122.40 sport=53 dport=32779 [ASSURED] use=1 mark=0 
udp      17 20 src=80.80.122.40 dst=195.112.97.17 sport=32779 dport=53 src=195.112.97.17 dst=80.80.122.40 sport=53 dport=32779 [ASSURED] use=1 mark=0 
udp      17 0 src=192.168.89.3 dst=192.168.89.1 sport=137 dport=137 src=192.168.89.1 dst=192.168.89.3 sport=137 dport=137 [ASSURED] use=1 mark=0 
udp      17 28 src=80.80.122.40 dst=62.118.250.235 sport=32779 dport=53 src=62.118.250.235 dst=80.80.122.40 sport=53 dport=32779 [ASSURED] use=1 mark=0 
tcp      6 71 TIME_WAIT src=81.222.130.6 dst=80.80.122.40 sport=20 dport=3028 src=192.168.89.3 dst=81.222.130.6 sport=3028 dport=20 [ASSURED] use=1 mark=0 
udp      17 131 src=192.168.89.3 dst=192.168.89.1 sport=3012 dport=53 src=192.168.89.1 dst=192.168.89.3 sport=53 dport=3012 [ASSURED] use=1 mark=0 
tcp      6 431437 ESTABLISHED src=192.168.89.3 dst=192.168.89.1 sport=3019 dport=993 src=192.168.89.1 dst=192.168.89.3 sport=993 dport=3019 [ASSURED] use=1 mark=0 
tcp      6 430270 ESTABLISHED src=192.168.89.3 dst=192.168.89.1 sport=3020 dport=993 src=192.168.89.1 dst=192.168.89.3 sport=993 dport=3020 [ASSURED] use=1 mark=0 
tcp      6 431999 ESTABLISHED src=192.168.89.3 dst=192.168.89.1 sport=3021 dport=22 src=192.168.89.1 dst=192.168.89.3 sport=22 dport=3021 [ASSURED] use=1 mark=0 

192.168.89.3 - это комп из локальной сети
192.168.89.1 - это адрес сетевухи которая смотрит в локальную сеть 
80.80.122.40 - интернет IP

Подробная информация о списке рассылки community