Re: Most optimal method to dump UDP conntrack entries

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Florian Westphal <fw@xxxxxxxxx> wrote:
> Antonio Ojea <antonio.ojea.garcia@xxxxxxxxx> wrote:
> > On Fri, 18 Oct 2024 at 13:33, Florian Westphal <fw@xxxxxxxxx> wrote:
> > > Same as what happens now, 2nd packet follows NAT mapping of first one.
> > 
> > This looks like the way to go ... if you can send me a patch I can do
> > some testing next week and report back
> 
> Here is a better patch, renew only when responses are seen.
> This means that once either initiator or responder ceases to send
> packets entry will time out.
> 
> Subject: netfilter: nf_conntrack_proto_udp: renew timeout only for bidirectional traffic

Ping.  Did you have a chance to test this?




[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux