On Mon, 2004-12-27 at 02:26, Vincent wrote: > Hello, > > Does any one know how to flush the connection state in the linux (Not > flush iptables rule -F). > I used transparent mode in the linux (use brctl to bridge eth & eth1). > When I tried to use iptables to drop some specified packet and it was > fail. > So I doubt there are some established connection state exist in the > linux to pass these > Forbidden connections. > > My enviroment > Linux 2.4.25 > Iptables 1.2.11 you need to remove the "ip_conntrack" module. in order to do that--you need to remove all the modules that use it (like 'iptable_nat' etc). -j -- "'Nuke the whales?' You don't really believe that, do you? I dunno. Gotta nuke something." --The Simpsons
