Hi all When using NFQUEUE and nf_conntrack_ipv4 together, there is a brief window at the beginning of each stream where packets are lost. The first packet for a given conntrack tuple is sent to userspace, NF_ACCEPT'd using nfq_set_verdict and forwarded on by the kernel, as expected. Any packets transmitted within a small window (microseconds, depending on hardware) after the first packet, are received by the userspace program, the call to nfq_set_verdict suceeds but the kernel doesn't forward the packet on. Any packets transmitted after this window are received and forwarded correctly. Is this a known issue? Thanks -- Daniel Collins Junior Developer daniel.collins@xxxxxxxxxxxxxx Smoothwall Ltd Phone: +44 (0) 8701 999500 www.smoothwall.net Smoothwall Limited is registered in England, Company Number: 4298247 and whose registered address is 1 John Charles Way, Leeds, LS12 6QA United Kingdom Any opinions stated in this message are solely those of the author. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
