Hi,
I was asking myself how are managed dynamic NAT timeout i.e how the
duration of an association "private address+private port" <->public
address/port is set.
I dont have a great knowledge about netfilter but after browsing Linux
code, I have in mind that it has something to do with the conntrack
mechanism but I do not understand.
Is it in /usr/src/linux/net/ipv4/netfilter/ip_conntrack_proto_tcp.c for
example for TCP? And if it's the cas, how does it work?
I halso see the struct nf_conn structure and particularly the timeout
field but I dont see where this timeout is set.
Thanks for your answers,
Tanguy.
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
