Le ven 19/09/2003 à 17:15, Nox a écrit : > You can flush conntrack entries for masqueraded connections > by doing either a down/up or ip addr add/del on the associated > interface. This probably won't help you in this case though > because the problem conntrack is not masqueraded. I don't > know of any other ways of flushing conntracks. Afaik, if you use SNAT, then IP address removal won't change anything, as you can SNAT on IP that does not belong to the box. For MASQUERADE, you may have to bring the interface down to flush associated conntrack entries. -- http://www.netexit.com/~sid/ PGP KeyID: 157E98EE FingerPrint: FA62226DA9E72FA8AECAA240008B480E157E98EE
