On 03/04/2006 04:58 AM, Oleg wrote: > Is it possible that when successfully pinging server, which has conntrack > enabled, cat /proc/net/ip_conntrack not show icmp entries? > > All ping requests/replyes goes both sides (seen in tcpdump) There should only be 1 reply packet, so the conntrack is destroyed immediately. http://iptables-tutorial.frozentux.net/iptables-tutorial.html#ICMPCONNECTIONS
