Hi - I posted a question on FedoraForums related to the use of the timestamp in the kernel hook at /proc/net/ipt_recent/ (specifically piping to the `date` command), though there were no takers. For the sake of brevity, the discussion occurs here: http://forums.fedoraforum.org/showthread.php?t=224461. To highlight, running the following command: cat /proc/net/ipt_recent/iplist | awk '{print ($1 ,system("date -d @" $5));}' yields human readable datestamps that are inconsistent with actual activity. Even without running the above command (which may not use the '@' symbol correctly), a visual comparison of date +'%s' to a logged IP address for that day is off by a factor of 10. Please advise as to how iptables timestamps IP activity in the ipt_recent hook (provided it's not strictly a kernel operation), and whether the current build handles the architecture below (if known). Thanks! Linux version 2.6.27.19-170.2.35.fc10.x86_64 (mockbuild@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx) (gcc version 4.3.2 20081105 (Red Hat 4.3.2-7) (GCC) ) #1 SMP Mon Feb 23 13:00:23 EST 2009. Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
