25 Feb
2005
25 Feb
'05
10:10
On 25 Feb 2005 at 9:44, Sandu Mihai wrote:
The firewall is filtering a quite busy network The problem is, that in my firewall rules I do not use anything that might trigger a connection tracking (that is why I was able to remove it, and live after that :) ) The problem is, that the modif of conntrack table size does not seems to work :(
The kernel seems to keep an entry in this table for every connection form this server, for every connection he is routing (even without nat) and if there is rule for a transparent proxy on the server there seem to be an entry for _every_ address that can possibly use this gateway! Try conntrack-viewer from P.Lagace http://cv.intellos.net/ mfg Andreas Kunberger ITV Denkendorf