Jabez McClelland
2003-Jul-29 17:54 UTC
[Shorewall-users] How to delete current masqueraded connections?
Hello, Is there a way to delete all masqueraded connections? I tried: shorewall reset shorewall refresh shorewall restart shorewall clear -> shorewall start In each case, if I do shorewall show connections whatever masqueraded connections that had been established before are still there. I''d like to clear these out if possible. Why? Sometimes I forward some ports for gaming, but I''d like to close off the connections after I''m done. BTW, I''m running Shorewall 1.3.14 on a Bering LEAF firewall. Thanks for the help. Jabez __________________________________ Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com
Tom Eastep
2003-Jul-29 18:01 UTC
[Shorewall-users] How to delete current masqueraded connections?
On Tue, 29 Jul 2003 17:54:24 -0700 (PDT), Jabez McClelland <jabezmcc@yahoo.com> wrote:> Is there a way to delete all masqueraded connections? I tried:Reboot -- then complain to the Netfilter developers. This topic gets lots of discussion on the Netfilter lists. You can also try: a) shorewall clear b) keep removing netfilter modules until you can finally remove ip_conntrack c) shorewall start That strategy will delete ALL connection tracking entries, not just the masquerading ones. And according to what I read, some of your attempts to remove modules may hang requiring that you reboot anyway. -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net