* help with conntrack
@ 2012-09-12 4:08 Miguel Alejandro González
2012-09-12 19:27 ` Andrew Beverley
0 siblings, 1 reply; 3+ messages in thread
From: Miguel Alejandro González @ 2012-09-12 4:08 UTC (permalink / raw)
To: netfilter-devel
Hello
I'm making a netfilter module and I need to have interaction with
conntrack, as I understand conntrack is a hash table of all connections
IPv4 and IPv6. I basically need to know how to do lookups, insertions an
deletions, can you tell me how do this? If you can give me some
documentation or code to see how conntrack works and how to achieve what I
need to do, that would be great
Regards,
thanks in advance!
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: help with conntrack
2012-09-12 4:08 help with conntrack Miguel Alejandro González
@ 2012-09-12 19:27 ` Andrew Beverley
2012-09-12 22:07 ` Pablo Neira Ayuso
0 siblings, 1 reply; 3+ messages in thread
From: Andrew Beverley @ 2012-09-12 19:27 UTC (permalink / raw)
To: Miguel Alejandro González; +Cc: netfilter-devel
On Tue, 2012-09-11 at 23:08 -0500, Miguel Alejandro González wrote:
> Hello
>
> I'm making a netfilter module and I need to have interaction with
> conntrack, as I understand conntrack is a hash table of all connections
> IPv4 and IPv6. I basically need to know how to do lookups, insertions an
> deletions, can you tell me how do this? If you can give me some
> documentation or code to see how conntrack works and how to achieve what I
> need to do, that would be great
The "Writing Netfilter Modules" should help you (see part II):
http://inai.de/documents/Netfilter_Modules.pdf
Of course, there's also libnetfilter_conntrack which includes some good
examples, although it's a userspace library.
Andy
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: help with conntrack
2012-09-12 19:27 ` Andrew Beverley
@ 2012-09-12 22:07 ` Pablo Neira Ayuso
0 siblings, 0 replies; 3+ messages in thread
From: Pablo Neira Ayuso @ 2012-09-12 22:07 UTC (permalink / raw)
To: Andrew Beverley; +Cc: Miguel Alejandro González, netfilter-devel
On Wed, Sep 12, 2012 at 08:27:30PM +0100, Andrew Beverley wrote:
> On Tue, 2012-09-11 at 23:08 -0500, Miguel Alejandro González wrote:
> > Hello
> >
> > I'm making a netfilter module and I need to have interaction with
> > conntrack, as I understand conntrack is a hash table of all connections
> > IPv4 and IPv6. I basically need to know how to do lookups, insertions an
> > deletions, can you tell me how do this? If you can give me some
> > documentation or code to see how conntrack works and how to achieve what I
> > need to do, that would be great
>
> The "Writing Netfilter Modules" should help you (see part II):
> http://inai.de/documents/Netfilter_Modules.pdf
>
> Of course, there's also libnetfilter_conntrack which includes some good
> examples, although it's a userspace library.
This should also help to get an overall idea on how is implemented:
http://1984.lsi.us.es/~pablo/docs/login06.pdf
But you'll have to get ready to read Linux kernel code.
Start with net/netfilter/nf_conntrack_core.c
Good luck!
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2012-09-12 22:07 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2012-09-12 4:08 help with conntrack Miguel Alejandro González
2012-09-12 19:27 ` Andrew Beverley
2012-09-12 22:07 ` Pablo Neira Ayuso
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).