On Wed, Jan 12, 2011 at 1:36 PM, Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx> wrote: > You can implement a user-space conntrack helper with NFQUEUE and > libnetfilter_conntrack: > > http://people.netfilter.org/pablo/userspace-conntrack-helpers/ > > You require Linux kernel >= 2.6.37 I've upgraded the kernel to http://kernel.ubuntu.com/~kernel-ppa/mainline/v2.6.37-rc2-maverick/. I began experiencing this bug http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=612272 For me, conntrack -E expect is exiting immediately, on an almost unloaded box. So I built the two conntrack projects from git master to see if that would help - and got a kernel bug (see other message). Are there any other requirements? Would it be better if I build my own kernel? Are there any other dependency issues between the various players here: libnfnetlink, libnfconntrack, conntrack, and the kernel? Or is there a limit to the users of conntrack? Can my own daemon (modelled on the ftp userspace example of yours), conntrack -E, and other users of conntrack coexist? Thanks, Sam -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
