Notification of new/destroyed connection
Kerry Ó Cuanacháin
kerry.ocuanachain at googlemail.com
Thu Jul 12 10:00:37 CEST 2007
Following on from the discussion on CT lifecycle events, if one takes
a scenario whereby a newly created connection is subsequently
NF_DROP'd by a filter rule, is it exclusively a timer/timeout which
results in that same connection being destroyed?
Is there any event driven mechanism to inform conntrack that the
packet has been filtered?
Similarly, is there an way to identify the reason for IPCT_DESTROY
from the event raised?
Kind Regards
Kerry
More information about the netfilter-devel
mailing list