* Query: conntrack verus state command set
@ 2006-08-28 15:36 william fitzgerald
0 siblings, 0 replies; only message in thread
From: william fitzgerald @ 2006-08-28 15:36 UTC (permalink / raw)
To: netfilter
Dear all,
I have began my initial investigation into iptables from reading the
200+ page documentation by Oskar Andresson along with the man pages.
My question is the conntrack command set a replacement for the -m state
commands or is it an enhancement?
I am a little confused as I see some examples on the web etc that don't
use conntrack at all and others that do with the state options.
so is "conntrack" an add on to the "state" option or is it envisioned
that "conntrack" will replace the "state" option?
in fact can the iptables provide statefull inspection with just the
"state" command set?
kind regards,
Will.
--
William M. Fitzgerald,
PhD Student,
Telecommunications Software & Systems Group,
Waterford Institute of Technology,
Cork Rd.
Waterford.
Office Ph: +353 51 302937
Mobile Ph: +353 87 9527083
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2006-08-28 15:36 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2006-08-28 15:36 Query: conntrack verus state command set william fitzgerald
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox