I have a doubt on the correct usage of the conntrack func "nf_ct_get".
I'm calling it in this way in my netfilter, to track UDP traffic:
-----<Code snippet>-----
ct = nf_ct_get(skb, &ctinfo);
if (ct == NULL)
...
-----<Code snippet>-----
On some systems it just work. In some others I get the result as NULL
until I do something like
# iptables -A OUTPUT -m conntrack --ctstate NEW,RELATED,ESTABLISHED -j ACCEPT
I understand that this is due to some module missing. My question is:
is this the only way to do it?
Can I force this programmatically (or by loading/registering specific modules)?
If I'm not wrong, the modules insertion is not enough to get this
working, an additional action is required.
Thanks a lot for your help!
CC
