[Bug 498] RTP packets are not hitting NAT table

bugzilla-daemon at bugzilla.netfilter.org bugzilla-daemon at bugzilla.netfilter.org
Sun Aug 6 20:46:03 CEST 2006


https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=498





------- Additional Comments From cfilin at intermedia.net  2006-08-06 20:46 MET -------
Greetings - I've looked into libnetfilter_conntrack and stole a litle code 
from ctnl_test.c:

struct nfct_handle* cth = nfct_open(CONNTRACK, 0);
if (cth) {
  int ret = nfct_delete_conntrack(cth, orig, NFCT_DIR_ORIGINAL, NFCT_ANY_ID);
  fprintf(stdout, "TEST 6: delete conntrack (%d)\n", ret);
  if (ret < 0)
    errors++;
  nfct_close(cth);
}
else {
  fprintf(stderr, "Can't open handler\n");
  errors++;
}

to reset the connection in conntrack. I tested and it appears to be
working (per "cat /proc/net/ip_conntrack | grep my.ip.add.ress" anyway)

Question #1: will this work for my need to make NAT table to see the arriving
packets or rebooting the box or unloading the iptable is really the only
(and unacceptable) way to get this done?

Question #2: With the libnetfilter_conntrack is writing to iptables-restore 
STDIN really the best way t ochange the NAT table or there is some user space
API that can get this done without the overhead of a separare process?

Thanks

-c

-- 
Configure bugmail: https://bugzilla.netfilter.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.



More information about the netfilter-buglog mailing list