phil at ipom.com
Tue Mar 13 08:40:58 CET 2007
Pablo Neira Ayuso wrote:
> Phil Dibowitz wrote:
>> For what it's worth, I'm using libnetfilter_conntrack 0.0.31 on a 220.127.116.11
>> kernel (yes, I know, it's a bit old). /proc/net/ip_conntrack shows more
>> expected data - source and destinations being different.
> That release is from the Stone age, we've got one more recent, and
> you're using the old API, please upgrade. I would also suggest you to
> upgrade your kernel, at least to 2.6.18.
Another question - is there a way to get the nfct flags map outside of a
hook? I don't see a way to pull it down, but I could be missing it.
Phil Dibowitz phil at ipom.com
Open Source software and tech docs Insanity Palace of Metallica
"Never write it in C if you can do it in 'awk';
Never do it in 'awk' if 'sed' can handle it;
Never use 'sed' when 'tr' can do the job;
Never invoke 'tr' when 'cat' is sufficient;
Avoid using 'cat' whenever possible" -- Taylor's Laws of Programming
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 252 bytes
Desc: OpenPGP digital signature
Url : /pipermail/netfilter-devel/attachments/20070313/280f29ff/signature.pgp
More information about the netfilter-devel