Hi there, I went through the FAQ. And I know if I block port 21, the already established session will still continue. I have to reboot the firewall machine to stop the traffic. I wonder there must be an easier way to stop an established connection. Any comments welcome. Many thanks in advance. Michael
Mike Shen wrote:> > Hi there, > > > > I went through the FAQ. And I know if I block port 21, the already > established session will still continue. > > > > I have to reboot the firewall machine to stop the traffic. > > > > I wonder there must be an easier way to stop an established connection. > > > > Any comments welcome. > > > > Many thanks in advance. > > > > Michael > > > > > > >ifconfig ethX down? :P Shorewall has no control over the established connections but there is a tool called cutter that can do this. Regards Ray -- Ray Booysen rj_booysen@rjb.za.net ------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
Mike Shen wrote:> I wonder there must be an easier way to stop an established connection.You can use a tool called cutter: Description: disconnect routed IP connections Cutter will send packets to both ends of a tcp/ip connection to close the connection. It is designed to be used on a Linux router to disconnect unwanted connections. http://www.lowth.com/cutter/ Regards, -- - Pieter ------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642