From mboxrd@z Thu Jan 1 00:00:00 1970 From: Tobias DiPasquale Subject: Re: conntrack records not going away? Date: Mon, 20 Dec 2004 14:34:33 -0500 Message-ID: <876ef97a04122011343300233c@mail.gmail.com> References: <876ef97a041220111947fbeff5@mail.gmail.com> Reply-To: Tobias DiPasquale Mime-Version: 1.0 Content-Transfer-Encoding: 7bit Return-path: In-Reply-To: <876ef97a041220111947fbeff5@mail.gmail.com> List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Sender: netfilter-bounces@lists.netfilter.org Errors-To: netfilter-bounces@lists.netfilter.org Content-Type: text/plain; charset="us-ascii" To: netfilter On Mon, 20 Dec 2004 14:19:24 -0500, Tobias DiPasquale wrote: > Hi all, > > We have a box running 2.4.26 (from kernel.org) over here that's > serving as a sink for test SMTP traffic. The box sits behind a Linux > box that is doing ProxyARP. The weird thing is, sometimes after > sending tons of traffic to the sink, conntrack records hang around in > the ESTABLISHED state, even though the sink process (the endpoint for > the connections in question) has been shut down. Has anyone ever seen > this before? TIA :) More info: no NAT'ing is going on (the sink box has no firewall rules of any kind and all policies are ACCEPT). I read on an earlier post to some mailing list that this can happen if the application doesn't close the connections in the proper way. I will try to capture the packets and see what could be the issue in that respect. -- [ Tobias DiPasquale ] 0x636f6465736c696e67657240676d61696c2e636f6d