> On Monday 2009-01-19 21:27, Simon Labrecque wrote: >> On 19/01/09 3:14 PM, "Jan Engelhardt" <jengelh@xxxxxxxxxx> wrote: >>> On Monday 2009-01-19 21:11, Simon Labrecque wrote: >> >> If there's no way to flag a connection as RELATED for any >> destination port (given a known source and destination IP), then I >> guess I'll have no choice, but I'm still not sure if it's possible >> or not (beside the fact that this wouldn't be a *best practice*). > > The conntrack(8) tool allows you to set up expectations and so on > from userspace. Would maybe work, but then again this would require deployment of new applications. Also, if it's possible to modify the expectations as needed using conntrack-tools (haven't tried yet), I would expect it would be possible to do it directly in the module... no? Simon Labrecque -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
