From mboxrd@z Thu Jan 1 00:00:00 1970 From: Pablo Neira Ayuso Subject: Re: Libnetfilter_conntrack problems Date: Tue, 09 May 2006 17:12:14 +0200 Message-ID: <4460B14E.90506@eurodev.net> References: <20060501175353.GD5267@rama> <20060503111549.GO16562@sunbeam.de.gnumonks.org> Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit Cc: Harald Welte , netfilter-devel@lists.netfilter.org Return-path: To: =?ISO-8859-1?Q?S=E9bastien_LAVEZE?= In-Reply-To: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Sender: netfilter-devel-bounces@lists.netfilter.org Errors-To: netfilter-devel-bounces@lists.netfilter.org List-Id: netfilter-devel.vger.kernel.org Hi, Sébastien LAVEZE wrote: >> > However the DESTROY events come a long time after the actual end of a >> > connection by timeout...am I right ? >> >> not really. please be more specific. what is 'end of a connection by >> timeout'? which specific timeout of which particular state are you >> talking about? > > > My problem is pretty strange... > I got two processes, one has a callback registered to UPDATE events, > the other one has a callback registered to DESTROY event > > I do get destroy events but not all the time, when i have tcp > connections that go from ESTABLISHED state to FIN_WAIT and finally to > TIME_WAIT ( i see the progression of these states with the process > linked to UPDATE events ) But when the TIME_WAIT timer is over i do > not get the DESTROY event... Could you try to do the same thing with the conntrack tool and let us know if the problem still persists? to catch update events # conntrack -E -e UPDATE to catch destroy events # conntrack -E -e DESTROY -- Pablo