On Mon, May 07, 2012 at 09:43:24AM -0700, Kelvie Wong wrote: > On Mon, May 07, 2012 at 09:28:58AM -0700, Kelvie Wong wrote: > > That will be fine. > > > > Thank you, > > -- > > Kelvie Wong > > Here's the patch if you don't want to do the work :) > > From 2fa0ea4c54ad8b16e7978f8d41892f4d33b0db65 Mon Sep 17 00:00:00 2001 > From: Kelvie Wong <kelvie@xxxxxxxx> > Date: Mon, 7 May 2012 09:30:55 -0700 > Subject: [PATCH] netfilter: nf_ct_expect: partially implement > ctnetlink_change_expect > > This refreshes the "timeout" attribute in existing expectations if one is > given. > > The use case for this would be for userspace helpers to extend the lifetime > of the expectation when requested, as this is not possible right now > without deleting/recreating the expectation. > > I use this specifically for forwarding DCERPC traffic through: > > DCERPC has a port mapper daemon that chooses a (seemingly) random port for > future traffic to go to. We expect this traffic (with a reasonable > timeout), but sometimes the port mapper will tell the client to continue > using the same port. This allows us to extend the expectation accordingly. > > Signed-off-by: Kelvie Wong <kelvie@xxxxxxxx> Applied, thanks Kelvie. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
