ip_conntrack_max vs ip_conntrack
eldesoky.lists at gmail.com
Tue Sep 28 16:48:36 CEST 2004
Well, I want to make sure that it remembers only connections that
passes THROUGH it !!
On 28 Sep 2004 16:27:53 +0200, Jose Maria Lopez <jkerouac at bgsec.com> wrote:
> El mar, 28 de 09 de 2004 a las 09:59, Mohamed Eldesoky escribió:
> > But still,
> > The /proc/net/ip_conntrack should contain all connections tracked by
> > that firewall (ie, passing through the firewall), am I right ??
> Yes, and it will remember the connections made for a time. It's
> a list of all the connections the conntrack system have seen, and
> it's used to check the established and related connections.
> Jose Maria Lopez Hernandez
> Director Tecnico de bgSEC
> jkerouac at bgsec.com
> bgSEC Seguridad y Consultoria de Sistemas Informaticos
> The only people for me are the mad ones -- the ones who are mad to live,
> mad to talk, mad to be saved, desirous of everything at the same time,
> the ones who never yawn or say a commonplace thing, but burn, burn, burn
> like fabulous yellow Roman candles.
> -- Jack Kerouac, "On the Road"
More information about the netfilter