Bug ID: 6354418 ??? entries hang around for long time

Bug ID	6354418
Synopsis	??? entries hang around for long time
State	10-Fix Delivered (Fix available in build)
Category:Subcategory	network:ipfilter
Keywords	rtiq_reviewed
Responsible Engineer	John Ojemann
Reported Against
Duplicate Of
Introduced In	solaris_10
Commit to Fix	snv_72
Fixed In	snv_72
Release Fixed	solaris_nevada(snv_72) , solaris_10u5(s10u5_02) (Bug ID:2132460)
Related Bugs	6332057 , 6528443 , 6559262 , 6677460
Submit Date	22-November-2005
Last Update Date	31-August-2007
Description	A customer believes that NAT rules added through SIOCSTPUT don't go away unless flushed with ipnat -f. They may timeout, but the customer has never saw it. NOTE: TCP session in established state uses timeout value set to 5 days. it would be very useful for us to have a kernel dump with ipnat output attached anytime customer believes there are hanging entries. we would be able to quickly judge what's happening then by just checking in which state table hanging entry is. I've checked a code, but I was not able to discover anything suspicious for IOCTL code execution path.
Work Around	N/A
Comments	N/A

OpenSolaris