debug and notrack tables - proposal and questions
Fri, 19 Apr 2002 15:08:19 +0200 (CEST)
On Wed, 17 Apr 2002, Brad Chapman wrote:
> > As 2.4.20 comes out with newnat included, I'd like to start to work on the
> > debug and notrack tables we talked about at the netfilter workshop in
> > Enschede.
> Before I go any further, is any of this slated for 2.5 only?
I'd say no. It'd be a simple patch-o-matic extension against 2.4.
> > Debug table:
> Yes - make sure the NF_IP_DEBUG() macro (or whatever the author of this
> system decress) is linked to CONFIG_IP_NF_DEBUG (and CONFIG_IP6_NF_DEBUG, with its
> NF6_IP_DEBUG() macro). That way, maximum space-saving can be garnered.
Probably the NFC_DEBUG name was misleading - the debug table has no
connection with the internal debugging of netfilter. That can already be
done by compiling the kernel with debugging enabled. The debug table would
be an aid for rule debugging so that one could follow how a packet
traverses the tables, chains and rules.
E-mail : firstname.lastname@example.org, email@example.com
Address : KFKI Research Institute for Particle and Nuclear Physics
H-1525 Budapest 114, POB. 49, Hungary