On Thu, Apr 18, 2002 at 08:18:38AM -0400, Ramin Alidousti wrote: > On Thu, Apr 18, 2002 at 11:01:36AM +0100, Antony Stone wrote: > > > On Thursday 18 April 2002 4:15 am, Ramin Alidousti wrote: > > > > > > What I'd like to do is either kill all currently active connections from > > > > that IP or stopping packet mangling according to rules that no longer > > > > exist. Any suggestion would be greatly appreciated. > > > > > > Can you not rmmod the conntrack and insmod it back in? > > > > Surely this would kill *all* the connections currently active through the > > box, not just the ones related to the user who's just logged off. > > I don't know. Maybe. But didn't I hear from Harald that the conntrack can > pick up connections after the FW has rebooted? So, why not by bouncing the > module? I'll do some testing...
OK. Apparently you can't rmmod ip_conntrack as there are other dependencies. So, just forget about my previous suggestion. > > Ramin
