[RFC] alternative to conntrack ID
Harald Welte
laforge at netfilter.org
Mon Jul 11 07:41:07 CEST 2005
On Wed, Jun 22, 2005 at 07:23:20PM +0200, Patrick McHardy wrote:
> Amin Azez wrote:
> > Err... the current problem is that the conntrack id _may_ be re-used
> > within milli-seconds?
> > I was trying to find a safe conntrack id.
>
> No, it is 64 bit wide and does not wrap for a long time.
I'm still not convinced that the ID is a good idea (or that it is needed
in most cases). However,
However, flow based accounting is basically finished, all that it lacks
is nfnetlink/ctnetlink. So I want to submit them pretty soon for
mainline inclusion.
If you have decided onto which form of ID, please try to merge those patches
(if any) soon and tell me when I can finalize ctnetlink/nfnetlink for
submission.
Thanks!
--
- Harald Welte <laforge at netfilter.org> http://netfilter.org/
============================================================================
"Fragmentation is like classful addressing -- an interesting early
architectural error that shows how much experimentation was going
on while IP was being designed." -- Paul Vixie
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : /pipermail/netfilter-devel/attachments/20050711/c200fba7/attachment.bin
More information about the netfilter-devel
mailing list