[netfilter-core] Strange conntrack behaviour
Martin Josefsson
gandalf at wlug.westbo.se
Mon Jan 17 10:59:57 CET 2005
On Mon, 10 Jan 2005, Duncan B. wrote:
> Hi there,
Hi, this mail should have been sent to the
netfilter-devel at lists.netfilter.org list.
> I am running linux kernel 2.6.10 on Debian sarge, and have noticed
> recently that lots of connections in the conntrack table (shown with
> 'netstat-nat') are in the ESTABLISHED state, when they have long been
> closed on the client machine ... surely this is not usual behaviour?
>
> Could you tell me why this would be, or if there has been anything changed
> in the netfilter code as of recent versions that could have perhaps caused
> this to happen as a bug? ... I'm guessing it's something my end however.
This is a known bug which has been fixed. Either upgrade to 2.6.11-rc1 or
apply the patch at this location:
http://people.netfilter.org/gandalf/patches/conntrack-fix-rst.patch
/Martin
More information about the netfilter-devel
mailing list