iptables: DROP ESTABLISHED sessions?

To: debian-firewall@lists.debian.org
Subject: iptables: DROP ESTABLISHED sessions?
From: jairagoo@gmail.com
Date: 5 Jul 2005 11:33:48 -0700
Message-id: <[🔎] 1120588428.140210.4360@g44g2000cwa.googlegroups.com>

Hello,

i have Debian Woody, kernel v: 2.6.6 and iptables v1.2.9

Is there a way to drop ESTABLISHED sessions?

for example my ip_conntrack file looks like this:
# cat /proc/net/ip_conntrack |grep 1.34
tcp      6 54 ESTABLISHED src=192.168.1.34 dst=<PUBLIC IP> sport=1233
dport=135 src=10.2.2.71 dst=192.168.1.34 sport=135 dport=1233 [ASSURED]

Since the traffic is ESTABLISHED I cannot simply create another rule to
block the host besides restarting the firewall, is there a better
solution?

thanks,
Darth

Reply to:

Follow-Ups:
- Re: iptables: DROP ESTABLISHED sessions?
  - From: Paul Gear <paul@gear.dyndns.org>

Prev by Date: mail address change
Next by Date: Re: iptables: DROP ESTABLISHED sessions?
Previous by thread: mail address change
Next by thread: Re: iptables: DROP ESTABLISHED sessions?
Index(es):
- Date
- Thread