Thanks for the prompt response! I tried the example code again with just swapping orig with reply like you suggested and it worked! Where is the documentation describing this behaviour? I also tried conntrack -G again - it was consistent with the behaviour you were describing. I ran it under strace -e sendto,recvfrom and it seems like it does get flows back from the kernel, it just doesn't print anything - like you described. It probably applies the same filtering logic it runs on -L when running -G. I guess this all boils down to a conntrack-tools bug then? Thanks again for the help! Omri -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
