conntrack -E misses ipv6 events

netfilter-devel.vger.kernel.org archive mirror
 help / color / mirror / Atom feed

* conntrack -E misses ipv6 events
@ 2009-04-19 11:12 Jan Engelhardt
  2009-04-19 11:15 ` Pablo Neira Ayuso
  0 siblings, 1 reply; 2+ messages in thread
From: Jan Engelhardt @ 2009-04-19 11:12 UTC (permalink / raw)
  To: pablo; +Cc: Netfilter Developer Mailing List

Hi,


(given a loaded nf_conntrack_netlink.ko), conntrack -E seems to miss 
IPv6 connections. Xinetd listens on port 9 for testing.

# conntrack -E -e NEW,DESTROY -p tcp --orig-port-dst 9 &
[1] 8691

# telnet 127.0.0.1 9
Trying 127.0.0.1...
    [NEW] tcp      6 120 SYN_SENT src=127.0.0.1 dst=127.0.0.1 
sport=56558 dport=9 [UNREPLIED] src=127.0.0.1 dst=127.0.0.1 sport=9 
dport=56558
Connected to 127.0.0.1.
Escape character is '^]'.
^]
telnet> Connection closed.

# telnet ::1 9
Trying ::1...
Connected to ::1.
Escape character is '^]'.
^]
telnet> Connection closed.

(conntrack 0.9.12)


Jan

^ permalink raw reply	[flat|nested] 2+ messages in thread

* Re: conntrack -E misses ipv6 events
  2009-04-19 11:12 conntrack -E misses ipv6 events Jan Engelhardt
@ 2009-04-19 11:15 ` Pablo Neira Ayuso
  0 siblings, 0 replies; 2+ messages in thread
From: Pablo Neira Ayuso @ 2009-04-19 11:15 UTC (permalink / raw)
  To: Jan Engelhardt; +Cc: Netfilter Developer Mailing List

Jan Engelhardt wrote:
> Hi,
> 
> (given a loaded nf_conntrack_netlink.ko), conntrack -E seems to miss 
> IPv6 connections. Xinetd listens on port 9 for testing.

Did you forget to load nf_conntrack_ipv6?

Decadence:/home/pablo# conntrack -E
    [NEW] tcp      6 120 SYN_SENT src=::1 dst=::1 sport=40220 dport=80
[UNREPLIED] src=::1 dst=::1 sport=80 dport=40220
 [UPDATE] tcp      6 60 SYN_RECV src=::1 dst=::1 sport=40220 dport=80
src=::1 dst=::1 sport=80 dport=40220
 [UPDATE] tcp      6 432000 ESTABLISHED src=::1 dst=::1 sport=40220
dport=80 src=::1 dst=::1 sport=80 dport=40220 [ASSURED]
 [UPDATE] tcp      6 120 FIN_WAIT src=::1 dst=::1 sport=40220 dport=80
src=::1 dst=::1 sport=80 dport=40220 [ASSURED]
 [UPDATE] tcp      6 60 CLOSE_WAIT src=::1 dst=::1 sport=40220 dport=80
src=::1 dst=::1 sport=80 dport=40220 [ASSURED]
 [UPDATE] tcp      6 30 LAST_ACK src=::1 dst=::1 sport=40220 dport=80
src=::1 dst=::1 sport=80 dport=40220 [ASSURED]
 [UPDATE] tcp      6 120 TIME_WAIT src=::1 dst=::1 sport=40220 dport=80
src=::1 dst=::1 sport=80 dport=40220 [ASSURED]
^Cconntrack v0.9.12 (conntrack-tools): 7 flow events have been shown.

-- 
"Los honestos son inadaptados sociales" -- Les Luthiers

^ permalink raw reply	[flat|nested] 2+ messages in thread

end of thread, other threads:[~2009-04-19 11:16 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2009-04-19 11:12 conntrack -E misses ipv6 events Jan Engelhardt
2009-04-19 11:15 ` Pablo Neira Ayuso

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).