Kuzin Andrey wrote:
How to resolve this problem ? This is hardware bug, SMP bug, users corrupted packets bug, NFQUEUE bug or anything else ? How i can view this stucked packets in queue to try understand what is going wrong ? (userspace don't have any errors, because this code work normally from 2004 ip_queue ages, and we have this after rewrite application for NFQUEUE)
The first thing I'd do is make sure that userspace actually delivers the verdicts its supposed to. Just keep track of the last packet ID somewhere in the kernel, the verdict always has to be for the next higher number. If not, the bug is in userspace. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
