On Tue, 21 May 2002, Wojciech Sobola wrote: > I have chains here, that can't be cleared out. Example: > tcp 6 321156 ESTABLISHED src=63.218.135.142 dst=62.xx.x.44 sport=63920 dport=80 >[UNREPLIED] src=192.168.101.2 > dst=63.218.135.142 sport=80 dport=63920 use=1 ...
Looks like ACK-scanning of the network. > Such table can stay even 2 or 3 days. If I put DROP into INPUT or > PREROUTING it doesn't change. Is this something suspicious? Existing conntrack entries cannot be deleted by iptable rules. But those are harmless and will be time out later. Regards, Jozsef - E-mail : [EMAIL PROTECTED], [EMAIL PROTECTED] WWW-Home: http://www.kfki.hu/~kadlec Address : KFKI Research Institute for Particle and Nuclear Physics H-1525 Budapest 114, POB. 49, Hungary
