conn-close conn-close gives us possibility to get rid of entries in ip_conntrack about ESTABLISHED TCP connections.
Download

conn-close Ranking & Summary

conn-close Tags

TCP connections entries conn-close

conn-close Description

conn-close gives us possibility to get rid of entries in ip_conntrack about ESTABLISHED TCP connections. conn-close gives us possibility to get rid of entries in ip_conntrack about ESTABLISHED TCP connections that goes through our server.conn-close script uses hping2 to send spoofed RST packets which will fool conntrack and cause specified connections to be considered by conntrack as closed (now these connections will be in ip_conntrack in CLOSE state), even though RST packets will be morInformation about connections is read of course from /proc/net/ip_conntrack. Idea was taken from script seen somewhere on the internet.Requirements:· Perl 5.x (latest stable for your distro because of security reasons)· hping2Installation:· Download script: conn-close· Copy conn-close to some location that is in your PATH variable, for example /usr/sbin.· chmod +x /path_to_script/conn-closeExample of usage:conn-closeconn-close --srcip=10.0.0.2 --dstip=1.2.3.4 --lookupconn-close --srcip=10.0.0.2 --dstip=1.2.3.4 --srcport=22 --dstport=8080 --close

conn-close Related Software