Hello, i have Debian Woody, kernel v: 2.6.6 and iptables v1.2.9
Is there a way to drop ESTABLISHED sessions? for example my ip_conntrack file looks like this: # cat /proc/net/ip_conntrack |grep 1.34 tcp 6 54 ESTABLISHED src=192.168.1.34 dst=<PUBLIC IP> sport=1233 dport=135 src=10.2.2.71 dst=192.168.1.34 sport=135 dport=1233 [ASSURED] Since the traffic is ESTABLISHED I cannot simply create another rule to block the host besides restarting the firewall, is there a better solution? thanks, Darth -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
