Hi there. I'm trying to see TCP packets passing through a router using a netfilter module (in order to eventually alter them). I have a hook on PREROUTING, and it doesn't quite work as expected. The only packets I see, are the TCP handshake (3 packets). Any packets in an established connection do not get to my hook. The TCP connections in question all pass via NAT before reaching my hook. I've thus given my hook the priority NF_IP_PRI_LAST. I've tried setting nfcache to NFC_UNKNOWN for every TCP packet, and this didn't help. The kernel version on the router is 2.6.8.1, the router itself is based on a BCM board. I did not try to the same on another machine. My goal is to be able to see ALL the TCP packets in my hook. I do not want any caching/optimizations to take place. I'm obviously doing something wrong, so please tell my why is this happening. Thanks, Greg. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
