Wednesday, April 22, 2015

Completely remove nf_conntrack from kernel

1. Remove the following line, if it exists, in /etc/sysconfig/iptables-config
   IPTABLES_MODULES="ip_conntrack_netbios_ns"

 2. Stop iptables
   iptables -F

 3. Remove the related modules
   modprobe -r xt_NOTRACK nf_conntrack_netbios_ns nf_conntrack_ipv4 xt_state
   modprobe -r iptable_nat ipt_MASQUERADE nf_nat nf_defrag_ipv4
   modprobe -r nf_conntrack
at
Labels: , , ,

1 comment:

Chatty said...

I followed the above steps and yet able to remove these modules.
However setup 1 in /etc/sysconfig/iptables-config line looks as follows: IPTABLES_MODULES="".

I am trying this on CentOS 7.2. Could you please suggest what needs to be looked into.

January 28, 2017 at 10:00 PM

Post a Comment

Subscribe to: Post Comments (Atom)

Check clients which connect to Mac OS X Wi-Fi Internet Sharing

arp -i bridge100 -a bridge100 may be different on your Mac OSX