[RFC PATCH] ctnetlink port to nf_conntrack take #1
Yasuyuki KOZAKAI
yasuyuki.kozakai at toshiba.co.jp
Mon Nov 14 17:22:09 CET 2005
Hi, Pablo, that's great news.
From: Pablo Neira <pablo at eurodev.net>
Date: Mon, 14 Nov 2005 02:30:02 +0100
> This is a RFC. Attached two patches, the first contains the required
> modifications for nf_conntrack in order to get nf_conntrack_netlink working.
I'll read this deeply on this weekend.
> The second patch is an incremental diff against ip_conntrack_netlink.c,
> my intention with this patch is making easy your review. It clearly
> shows the slighty modifications introduced to carry out the porting.
>
> On the other hand, the whole C file (nf_netlink_conntrack.c) is
> available at http://people.netfilter.org/pablo/nf_conntrack_netlink.c
I think we can generalize layer 3 protocol handling more, by introducing
nfattr_to_tuple/tuple_to_nfattr to l3proto modules like proto.
And it would be great if {ip,nf}_conntrack_netlink.c can be unified.
But currently I don't have good idea to do that in clear way, and without
extensibility limitation of nf_conntrack_netlink. I'll think about this more.
How do you think ?
Regards,
-- Yasuyuki Kozakai
More information about the netfilter-devel
mailing list