LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 07-11-2007, 08:21 PM   #1
Niceman2005
Member
 
Registered: Nov 2004
Distribution: Fedora Core 2
Posts: 330

Rep: Reputation: 30
How to auto clear ip_conntrack ?


Hi,

Just wondering if there is any way for me to auto clear the ip_conntrack file? I know increase the value in ip_conntrack_max will increase the connections but i would like the ip_conntrack records to be cleared consistently.

Thanks !
 
Old 07-11-2007, 10:04 PM   #2
Capt_Caveman
Senior Member
 
Registered: Mar 2003
Distribution: Fedora
Posts: 3,658

Rep: Reputation: 69
Have you tried just dropping the entire table by unloading the conntrack module? Or are you trying to do something more elegant like decreasing the timeout values so that the table clears faster on its own?
 
Old 07-12-2007, 03:28 AM   #3
Niceman2005
Member
 
Registered: Nov 2004
Distribution: Fedora Core 2
Posts: 330

Original Poster
Rep: Reputation: 30
Hi Captain_Caveman,

Thanks for your reply. Actually previously i did post about my problem its about my iptables stop working over time and restarting iptables solve the problem. BUt its a hassle to do that restarting everytime, quite unreliable for clients.

Actually you did helped me in this thread: http://www.linuxquestions.org/questi...d.php?t=526276

Thanks for that, as suggested in that thread that maybe the ip_conntrack after flush manage to work the iptables service again. So i want to flush the ip_conntrack file in the crond job to see if that solves the problem...
I have no idea what is the problem yet. A few sites are experiencing the same problem.

Thanks!
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Tuning ip_conntrack barghota Linux - Networking 1 05-13-2007 04:11 AM
How to clear a std::string buff.clear()? lucky6969b Programming 3 03-17-2006 07:50 AM
how do i replace the clear "clear screen" with the cls command thefedexguy SUSE / openSUSE 2 12-02-2005 05:02 PM
ip_conntrack and worms arthurb Linux - Networking 6 12-18-2004 12:52 PM
ip_conntrack Belize Linux - General 3 03-23-2004 02:45 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 09:27 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration