[RFC] alternative to conntrack ID
Marcus Sundberg
marcus at ingate.com
Sun May 8 00:32:26 CEST 2005
Patrick McHardy wrote:
> Marcus Sundberg wrote:
>
>>You don't even need fast CPUs or networks to risk precision problems
>>- think multiple NICs and SMP.
>
> SMP or multiple NIcs don't matter because at any point in time only
> one instance of a connection can exist. The challenge is to have a
> unique identifier over time.
Yes, having a unique identifier over time was what was being discussed,
and I was merely pointing out that with SMP you can get two conntracks
with identical timestamps even if you have infinite precision, since
two new conntracks can be timestamped simultaneously by different CPUs.
//Marcus
--
---------------------------------------+--------------------------
Marcus Sundberg <marcus at ingate.com> | Firewalls with SIP & NAT
Software Developer, Ingate Systems AB | http://www.ingate.com/
More information about the netfilter-devel
mailing list