On Wed, Jan 30, 2008 at 08:30:43PM +0100, Pablo Neira Ayuso wrote: > Hi, > > JFYI: conntrackd also does connection tracking accounting so I'm not > sure if ulogd should do this as well via the NFCT plugin. This looks > like duplicated effort IMO and, as for now, conntrackd also provides > userspace conntrack table dumping without locking the kernel via > `conntrackd -i' which is a feature that ulogd does not provide. > > I'm not sure if the effort is worth, Harald? I think it is still worth having this in ulogd2, since ulogd2 is an entire framework for all kinds of logging, including input/filter/aggregator/output plugins where you can build IPFIX compliant network-wide accounting/logging systems that are interoperable with different vendors. So conntrackd might be fine for the special case of locally logging into a file or piping the output through some script. But for all the more sophisticated scenarios, ulogd2 is the solution of choice, I'd say. -- - Harald Welte <laforge@xxxxxxxxxxxxx> http://netfilter.org/ ============================================================================ "Fragmentation is like classful addressing -- an interesting early architectural error that shows how much experimentation was going on while IP was being designed." -- Paul Vixie
Attachment:
signature.asc
Description: Digital signature
