Hello I have some questions about how conntrack tuple handles ICMP error messages... When a ICMP error packet arrives containing an embedded UDP or TCP packet, assuming there was already a UDP or TCP connection being tracked by conntrack, what are the IP addresses of the tuple, the ones from the ICMP error message or the ones from the embedded packet? Also does the tuple saves port information in this case as well as icmp type and code? How does conntrack know that ICMP error message is related to an existing connection? Regards! -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
