From: Pablo Neira <pablo@eurodev.net>
To: ruby joker <ruby.joker@op.pl>,
Netfilter Development Mailinglist
<netfilter-devel@lists.netfilter.org>,
Patrick McHardy <kaber@trash.net>
Subject: Re: [PATCH] ipt_ULOG delays packets caught by filter
Date: Tue, 20 Jul 2004 02:45:56 +0200 [thread overview]
Message-ID: <40FC6B44.50407@eurodev.net> (raw)
In-Reply-To: <20040720001021.GA4226@wonderland>
[-- Attachment #1: Type: text/plain, Size: 454 bytes --]
Hi,
ruby joker wrote:
>Maybe bug is hard to notice but it decrease ulog reliability.
>[1] http://lists.netfilter.org/pipermail/netfilter-devel/2004-June/015860.html
>
>
I think that this behaviour is related to the default qthreshold value.
If I'm not wrong, we could fix this problem setting the default value to
0 instead of 1. In that case we need to update the iptables man page. If
I'm missing something, please let me know.
regards,
Pablo
[-- Attachment #2: ulog.patch --]
[-- Type: text/x-patch, Size: 368 bytes --]
diff -u -r1.1.1.1 ipt_ULOG.h
--- a/include/linux/netfilter_ipv4/ipt_ULOG.h 11 May 2004 13:35:40 -0000 1.1.1.1
+++ b/include/linux/netfilter_ipv4/ipt_ULOG.h 20 Jul 2004 00:34:30 -0000
@@ -12,7 +12,7 @@
#endif
#define ULOG_DEFAULT_NLGROUP 1
-#define ULOG_DEFAULT_QTHRESHOLD 1
+#define ULOG_DEFAULT_QTHRESHOLD 0
#define ULOG_MAC_LEN 80
#define ULOG_PREFIX_LEN 32
[-- Attachment #3: man.patch --]
[-- Type: text/x-patch, Size: 658 bytes --]
Index: libipt_ULOG.man
===================================================================
RCS file: /cvspublic/iptables/extensions/libipt_ULOG.man,v
retrieving revision 1.1
diff -u -r1.1 libipt_ULOG.man
--- libipt_ULOG.man 22 Jan 2004 15:04:24 -0000 1.1
+++ libipt_ULOG.man 20 Jul 2004 00:55:33 -0000
@@ -22,6 +22,6 @@
.BI "--ulog-qthreshold " "size"
Number of packet to queue inside kernel. Setting this value to, e.g. 10
accumulates ten packets inside the kernel and transmits them as one
-netlink multipart message to userspace. Default is 1 (for backwards
+netlink multipart message to userspace. Default is 0 (for backwards
compatibility).
.br
next prev parent reply other threads:[~2004-07-20 0:45 UTC|newest]
Thread overview: 4+ messages / expand[flat|nested] mbox.gz Atom feed top
2004-07-20 0:10 [PATCH] ipt_ULOG delays packets caught by filter ruby joker
2004-07-20 0:45 ` Pablo Neira [this message]
2004-07-20 1:37 ` Pablo Neira
2004-07-23 0:03 ` Harald Welte
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=40FC6B44.50407@eurodev.net \
--to=pablo@eurodev.net \
--cc=kaber@trash.net \
--cc=netfilter-devel@lists.netfilter.org \
--cc=ruby.joker@op.pl \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.