|
in my NAT box I found a lot of
transform item in /proc/net/ip_conntrack
with the expire time larger than 400000
I wanna drop it and check iptables manual
i found the -m conntrack option
how to use this match extension?
|
|
in my NAT box I found a lot of
transform item in /proc/net/ip_conntrack
with the expire time larger than 400000
I wanna drop it and check iptables manual
i found the -m conntrack option
how to use this match extension?
|
|