On Tue, Dec 17, 2013 at 03:22:50PM +0100, Kristian Evensen wrote: > Hi Pablo, > > Thank you very much for your reply. > > On Tue, Dec 17, 2013 at 2:16 PM, Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx> wrote: > > We have limited bandwidth in the event path and this information would > > be also included in those messages. > > Ah, I see, I missed that one. Thanks for letting me know. > > > Looking at the existing Netfilter userspace software that we have now, > > I cannot see how we can benefit from this proposed feature. > > One example application I thought of was a "middlebox/router-version" > of ss, with some added logic for for example identifying TCP > connections. I guess that application you refer can be the conntrack [1] userspace tool. I still don't see how that information can be useful to be included in that output as it changes very fast and by polling you will only get stale snapshots of what it's actually happening in the TCP tracking subsystem. [1] http://www.netfilter.org/projects/conntrack-tools/index.html -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
