-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I recently reached the same conclusion when unsuccessfully testing cutter. It didn't kill the connection but it did remove the conntrack entry, so I figured the RST packets might be doing the trick. On Tuesday 24 June 2003 10:06 pm, 杨华 spake thusly: > Hi everyone : > I have notice that many request about how to clear the > /proc/net/ip_conntrack entry , and someone suggest that it have no > resolution except restart the interface . > I think the answer : send a fake ip packet (with RST set) to > firewall , to let it think the connection terminate . > By this methode , I have the following script written , it work > well for me. > To use this script , you must have hping2 installed , it can be > download from http://www.hping.org -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (GNU/Linux) iD8DBQE++znDSCmJfrlriowRAuc7AKDo0NRLi4sqXACU66x8l+T9cQeJjACfYk8F ta8F/i4Ke4B3rYRNuiqc3gM= =7GIt -----END PGP SIGNATURE-----
