On Wed, 25 Jun 2003, [GB2312] Ń wrote: > I have notice that many request about how to clear the > /proc/net/ip_conntrack entry , and someone suggest that it have no > resolution except restart the interface . > I think the answer : send a fake ip packet (with RST set) to > firewall , to let it think the connection terminate . > By this methode , I have the following script written , it work > well for me. Nice solution and script! But please note, it won't work with TCP window tracking patch applied. Best regards, Jozsef - E-mail : kadlec@xxxxxxxxxxxxxxxxx, kadlec@xxxxxxxxxxxxxxx PGP key : http://www.kfki.hu/~kadlec/pgp_public_key.txt Address : KFKI Research Institute for Particle and Nuclear Physics H-1525 Budapest 114, POB. 49, Hungary
