On Mon, 20 Dec 2004 14:19:24 -0500, Tobias DiPasquale <codeslinger@xxxxxxxxx> wrote: > Hi all, > > We have a box running 2.4.26 (from kernel.org) over here that's > serving as a sink for test SMTP traffic. The box sits behind a Linux > box that is doing ProxyARP. The weird thing is, sometimes after > sending tons of traffic to the sink, conntrack records hang around in > the ESTABLISHED state, even though the sink process (the endpoint for > the connections in question) has been shut down. Has anyone ever seen > this before? TIA :) More info: no NAT'ing is going on (the sink box has no firewall rules of any kind and all policies are ACCEPT). I read on an earlier post to some mailing list that this can happen if the application doesn't close the connections in the proper way. I will try to capture the packets and see what could be the issue in that respect. -- [ Tobias DiPasquale ] 0x636f6465736c696e67657240676d61696c2e636f6d
