Jan Engelhardt wrote:
On Jan 15 2008 07:48, Patrick McHardy wrote:
This reminded me - while we're introducing new revisions, there
are two things that have always been missing from xt_conntrack
and I know of multiple patches adding this. One is port matching
for both directions, the other is matching on the direction
itself. Would you be interested in adding this? Otherwise I'm
going to take care of it myself.
I will take care of that, yes.
Thanks.
While matching the direction is probably a no-brainer (just checking
a field), I would be interested in how "direction" is actually defined.
Does the first packet in a NEW ct dictate the direction? What values
does a direction have - north, south, left, right?
I did not name "inbound" and "outbound" on purpose, because routers
do not have an "in" or "out" side like most consumer desktop boxes.
In case of xt_conntrack the directions are relative to the first
packet of the connection, as with orig-src, repl-src, ...
-
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
