All of lore.kernel.org
 help / color / mirror / Atom feed
* Introduce user space conntrack tool
@ 2005-03-27 23:56 Pablo Neira
  2005-03-28 20:43 ` Krzysztof Oledzki
  0 siblings, 1 reply; 2+ messages in thread
From: Pablo Neira @ 2005-03-27 23:56 UTC (permalink / raw)
  To: Netfilter Development Mailinglist

[-- Attachment #1: Type: text/plain, Size: 1045 bytes --]

I've started a tool to do common manipulation conntrack. Please, it is 
*very* raw yet, it still need work but I think that it could be 
interesting. Of course, it requires libctnetlink and libnfnetlink.

An overview:

o List conntrack table

      $ conntrack -L conntrack

(Better that cat'ing /proc/net/ip_conntrack all day which is known to 
harm performance)

o Get a conntrack

      $ conntrack -G conntrack --reply-src 85.136.102.173 \
        --reply-dst 66.111.58.51 -p tcp --reply-port-src 44843 \
        --reply-port-dst 993 -i 13

o Delete a conntrack

      $ conntrack -D conntrack --reply-src 85.136.102.173 \
        --reply-dst 66.111.58.51 -p tcp --reply-port-src 44843 \
        --reply-port-dst 993 -i 13

o Create a conntrack

      $ conntrack -I conntrack --orig-src 1.1.1.4 --orig-dst 2.2.2.3 \
      --reply-src 2.2.2.3 --reply-dst 1.1.1.4 -p tcp --orig-port-src 20 \
      --orig-port-dst 10 --reply-port-src 10 --orig-port-dst 20 \
      -u ASSURED -t 100

o Flush conntrack table (not implemented)
o Display events

[-- Attachment #2: conntrack-0.1.tar.gz --]
[-- Type: application/gzip, Size: 11692 bytes --]

^ permalink raw reply	[flat|nested] 2+ messages in thread
end of thread, other threads:[~2005-03-28 20:43 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2005-03-27 23:56 Introduce user space conntrack tool Pablo Neira
2005-03-28 20:43 ` Krzysztof Oledzki

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.