Hello, This patchset implements filtering capability in NFCT input plugin. For now this is only possible when NFCT is used in event mode as the libnetfilter_conntrack library does not support filtering of dump. It adds a set of variable t the configuration of a NFCT capture in ulogd.conf: # source ip of connection must belong to these networks accept_src_filter=192.168.1.0/24,1:2::/64 # destination ip of connection must belong to these networks accept_dst_filter=192.168.1.0/24 # layer 4 proto of connections accept_proto_filter=tcp,sctp Patchset statistics: include/ulogd/addr.h | 18 +++ input/flow/ulogd_inpflow_NFCT.c | 274 ++++++++++++++++++++++++++++++++- src/Makefile.am | 2 +- src/addr.c | 113 ++++++++++++++ ulogd.conf.in | 5 + 5 files changed, 408 insertions(+), 4 deletions(-) BR, -- Eric Leblond <eric@xxxxxxxxx> -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
