[Bug 858] Some address cannot be blocked

bugzilla-daemon at netfilter.org bugzilla-daemon at netfilter.org
Sun Oct 13 17:40:48 CEST 2013


https://bugzilla.netfilter.org/show_bug.cgi?id=858

Phil Oester <netfilter at linuxace.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
                 CC|                            |netfilter at linuxace.com
         Resolution|                            |INVALID

--- Comment #2 from Phil Oester <netfilter at linuxace.com> 2013-10-13 17:40:47 CEST ---
Once a session is in conntrack, adding DROP rules to INPUT chain will not
disallow traffic from it.  You would need to flush the conntrack session table
first.  

Please ask this question on the netfilter mailing list - there is no bug in
netfilter's ability to block IPs.

-- 
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.



More information about the netfilter-buglog mailing list