Hi, The goal of this patchset is to fix some issues with NFLOG. This target has a qthreshold value that can be set from iptables or from libnetfilter_log. If the qthreshold is set from libnetfilter_log and if the rule does not set the value, NFLOG should use the instance default. This is not the case, because iptables set the qthreshold to 1 by default and this is used as a user-defined value by kernel. This patchset fixes the issue by using the qthreshold as default for iptables: - netfilter 1/2: if set per-rule qthreshold overrides per-instance - iptables: xt_NFLOG: Set default NFLOG qthreshold to 0 This patchset also fixes an issue with definition of timeout in the logging queue. It fixes a computation error and change the unit to millisecond which is a more convenient as the targeted 1/100 sec: - netfilter 2/2: fix nflog timeout handling BR, -- Eric Leblond <eric@xxxxxx> INL: http://www.inl.fr/ NuFW: http://www.nufw.org/ -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
