See conntrack-tcp-nopickup.patch from iptables patch-o-matic in extra section but it is highly experimential
23.05.2002 22:04:33, Patrick Desnoyers <[EMAIL PROTECTED]> wrote: > >I would like to know if it is possible, when reloading the firewall script , >to keep the old state table and to make all connections go through the rules >again to see if it still accepted. > > >I just dont want to lose my connections when I change a rule... is there any >way I can do that ? (Like in checkpoint FW1 (I think). (It keeps the old >state table and verifies with it to see if it was established, if so, it >goes through the rules and if still accepted, goes in the new state table) > >Thanks > >-------------------------------------------- >Patrick Desnoyers >-------------------------------------------- > > > ----------------------------------- mailto:[EMAIL PROTECTED] BR Alexey Talikov FORTEK -----------------------------------
