On Wednesday 23 October 2002 3:02 pm, Roy Sigurd Karlsbakk wrote: > hi > > I've got this video server streaming @ ~250Mbps, so I really don't want to > waste cpu cycles on ip_conntrack. > > how can I test for tcp flags to allow me to do a poor-man's-conntrack? Treat packets with SYN set, and ACK, FIN and RST clear as NEW connections. Treat packets with SYN and ACK set, FIN and RST clear as NEW replies. Treat packets with ACK set, SYN, FIN and RST clear as ESTABLISHED connections. Treat packets with FIN or RST set (probably ACK too) as terminating connections. Antony. -- Most people have more than the average number of legs.
