Dan Uscatu wrote:
am vazut printr-un mesaj programetele asta, l-am incercat si mi se
pare foarte misto.
asa ca m-am apucat sa vad fiecare ip din lan cite conexiuni are, si
i-am gasit pe unii cu citeva sute. drept pentru care i-am ars direct.
normal, ei s-au ofticat, ca si cind mi-ar pasa.
problema este ca la unii din ei apar multe conexiuni ca "ESTABLISHED"
desi la ei pe sisteme un netstat nu arata nimic si nici trafic pe ele
nu vad. acum am scos cablul de retea de la una din statiile cu
problema, si am in continuare o groaza de ESTEBLISHED pe gateway.
cum va esplicati trebushoara asta ? si cum se poate "goli" ce e prin
conntrack ?
multumesc
http://ipsysctl-tutorial.frozentux.net/chunkyhtml/netfilterreference.html
3.7.8. ip_ct_tcp_timeout_established
The ip_ct_tcp_timeout_established variable tells us the default timeout
value for tracked connections in the ESTABLISHED state. All connections
that has finished the initial 3-way handshake, and that has not seen any
kind of FIN packets are considered as ESTABLISHED. This is in other
words more or less the default state for a TCP connection.
Since we never want a connection to be lost on either side of the
netfilter firewall, this timeout is set extremely high so we do not
accidentally erase entries that are still used. Per default, the
ip_ct_tcp_timeout_established variable is set to 432000 seconds, or 5 days.
_______________________________________________
RLUG mailing list
[email protected]
http://lists.lug.ro/mailman/listinfo/rlug
