Re: conntrack -B undocumented - Pablo Neira Ayuso

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Pablo Neira Ayuso <pablo@netfilter.org>
To: Tino Keitel <tkeitel@innominate.com>
Cc: netfilter-devel@vger.kernel.org
Subject: Re: conntrack -B undocumented
Date: Thu, 24 Dec 2009 00:25:15 +0100	[thread overview]
Message-ID: <4B32A6DB.1050004@netfilter.org> (raw)
In-Reply-To: <20091216174205.GA30937@tkeitel002.bln.innominate.local>

[-- Attachment #1: Type: text/plain, Size: 319 bytes --]

Tino Keitel wrote:
> Hi,
> 
> the example scripts for conntrackd (like primary-backup.sh) use a -B
> option, which seems to be undocumented in the manual page and in the
> command help.  What exactly is it intended for?

It forces a bulk send to other cluster nodes. I have applied the 
following patch to the manpage.

[-- Attachment #2: doc.patch --]
[-- Type: text/x-patch, Size: 897 bytes --]

conntrackd: document `-B' command

From: Pablo Neira Ayuso <pablo@netfilter.org>

This patch documents the `-B' command in conntrackd that allows you
to force a bulk send to other firewall nodes in the cluster.

Reported-by: Tino Keitel <tkeitel@innominate.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
---
 conntrackd.8 |    4 ++++
 1 files changed, 4 insertions(+), 0 deletions(-)

diff --git a/conntrackd.8 b/conntrackd.8
index f741bc9..0c9054e 100644
--- a/conntrackd.8
+++ b/conntrackd.8
@@ -41,6 +41,10 @@ Flush the internal and/or external cache
 Flush the kernel conntrack table (if you use a Linux kernel >= 2.6.29, this
 option will not flush your internal and external cache).
 .TP
+.BI "-B "
+Force a bulk send to other replica firewalls. With this command, you will
+ask conntrackd to send the state-entries that it owns to others.
+.TP
 .BI "-k "
 Kill the daemon
 .TP

     prev parent reply	other threads:[~2009-12-23 23:25 UTC|newest]

Thread overview: 2+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2009-12-16 17:42 conntrack -B undocumented Tino Keitel
2009-12-23 23:25 ` Pablo Neira Ayuso [this message]

find likely ancestor, descendant, or conflicting patches for this message:
( dfblob:f741bc9 dfblob:0c9054e )
 OR (
bs:"Re: conntrack -B undocumented" )
	(help)

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=4B32A6DB.1050004@netfilter.org \
    --to=pablo@netfilter.org \
    --cc=netfilter-devel@vger.kernel.org \
    --cc=tkeitel@innominate.com \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.