Re: "selective" connection tracking?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hi.

Cedric Blancher wrote:
Just to be sure: it will still be possible to use conntrack for traffic that it targeted to the router itself, while pushing forwarded traffic through the router without connection traffic. Correct? 
You're able to do anything you want, as you have to explicitly implement
which traffic you do not want to track. Suppose your local IP is
A.B.C.D, then doing something like this should do the trick :

iptables -t raw -A PREROUTING -d ! A.B.C.D -j NOTRACK

Do this to exclude all traffic destined to local box.

You mean "not destined to the local box", right? :)

Bye, Mike



[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux