Re: conntrack -E -i not allowed?

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Alan Ezust <alan.ezust@presinet.com>
To: Pablo Neira Ayuso <pablo@netfilter.org>
Cc: netfilter@lists.netfilter.org
Subject: Re: conntrack -E -i not allowed?
Date: Thu, 9 Nov 2006 08:52:10 -0800	[thread overview]
Message-ID: <200611090852.14878.alan.ezust@presinet.com> (raw)
In-Reply-To: <4552302B.1030509@netfilter.org>

[-- Attachment #1: Type: text/plain, Size: 1273 bytes --]

Thanks for the reply. Ok, I can see how I can generate some IDs, but I first 
want to make sure i have all of the information I need.

When I run conntrack, I only see one protocol number. I think it is a layer4 
protocol (tcp vs udp). If I'm not seeing an l3proto in my output, why might 
that be?

udp      17 12 src=10.10.201.2 dst=204.174.64.1 sport=54475 dport=53 
src=204.174.64.1 dst=209.53.156.2 sport=53 dport=54475 use=1 mark=0
tcp      6 420332 ESTABLISHED src=10.10.100.3 dst=10.10.1.22 sport=1356 
dport=5432 src=10.10.1.22 dst=10.10.100.3 sport=5432 dport=1356 [ASSURED] 
use=1 mark=0

On Wednesday 08 November 2006 11:29, Pablo Neira Ayuso wrote:
> Alan Ezust wrote:
> > We need to be able to determine when we get an UPDATE or a DISCONNECT,
> > which connections they correspond to. I assumed that was the purpose of
> > the CT id.
>
> The purpose was to uniquely identify a connection but we currenlty
> assume that the tuple {src, portsrc, dst, portdst, l3protonum, protonum}
> is enough.
>
> > Why are you removing it?
>
> http://lists.netfilter.org/pipermail/netfilter-devel/2005-June/019923.html

-- 
Alan Ezust            www.presinet.com
Presinet, inc         alan.ezust@presinet.com
           Victoria, BC,Canada

[-- Attachment #2: Type: application/pgp-signature, Size: 189 bytes --]

next prev parent reply	other threads:[~2006-11-09 16:52 UTC|newest]

Thread overview: 8+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2006-11-01 18:43 conntrack -E -i not allowed? Alan Ezust
2006-11-02 19:11 ` Alan Ezust
2006-11-07 12:40   ` Pablo Neira Ayuso
2006-11-07 18:37     ` Alan Ezust
2006-11-08 19:29       ` Pablo Neira Ayuso
2006-11-09 16:52         ` Alan Ezust [this message]
2006-11-09 17:10           ` Pablo Neira Ayuso
2006-11-09 20:54             ` Alan Ezust

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=200611090852.14878.alan.ezust@presinet.com \
    --to=alan.ezust@presinet.com \
    --cc=netfilter@lists.netfilter.org \
    --cc=pablo@netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.