Linux Netfilter / IP Tables

Date Index

install ipt-account on linux 2.6.32, Mamadou Touré
- Re: install ipt-account on linux 2.6.32, Jan Engelhardt
POSTROUTING SNAT only reply packets, GMail Isaac Gonzalez
- Re: POSTROUTING SNAT only reply packets, Gáspár Lajos
  - Re: POSTROUTING SNAT only reply packets, GMail Isaac Gonzalez
    - Re: POSTROUTING SNAT only reply packets, Amos Jeffries
  - Re: POSTROUTING SNAT only reply packets, Giles Coochey
    - Re: POSTROUTING SNAT only reply packets, GMail Isaac Gonzalez
    - Re: POSTROUTING SNAT only reply packets, Jan Engelhardt
      - Re: POSTROUTING SNAT only reply packets, Giles Coochey
        
        Re: POSTROUTING SNAT only reply packets, GMail Isaac Gonzalez
        
        Re: POSTROUTING SNAT only reply packets, Jan Engelhardt
- Re: POSTROUTING SNAT only reply packets, Michael Vallaly
- <Possible follow-ups>
- POSTROUTING SNAT only reply packets, Isaac González
iptables --string-replace, Ben K
- Re: iptables --string-replace, Jan Engelhardt
  - Re: iptables --string-replace, Ben K
    - Re: iptables --string-replace, Jan Engelhardt
      - Re: iptables --string-replace, Ben K
        
        Re: iptables --string-replace, Jan Engelhardt
        
        Re: iptables --string-replace, Amos Jeffries
        
        Re: iptables --string-replace, Jan Engelhardt
        
        Re: iptables --string-replace, Pablo Neira Ayuso
        
        Re: iptables --string-replace, Jan Engelhardt
        
        Re: iptables --string-replace, Pablo Neira Ayuso
        
        Re: iptables --string-replace, Pablo Neira Ayuso
- Re: iptables --string-replace, /dev/rob0
get byte count per rule and ip address, Mamadou Touré
- Re: get byte count per rule and ip address, Amos Jeffries
  - Re: get byte count per rule and ip address, Jan Engelhardt
- <Possible follow-ups>
- Re: get byte count per rule and ip address, Jan Engelhardt
  - Re: get byte count per rule and ip address, Mamadou Touré
Conntrack : limit number of NEW outgoing connections per source IP, Jan Rovner
- Re: Conntrack : limit number of NEW outgoing connections per source IP, Jan Engelhardt
How to round-robin UDP packets w/ iptables?, nn6eumtr
redirect local port to another local port, wchristian@xxxxxxx
hashlimit working, Gurpreet Kaur
missing or incorrect links on netfilter.org, Sam Roberts
Best way to kill a live TCP connection?, Alessandro Vesely
- Re: Best way to kill a live TCP connection?, Jan Engelhardt
  - Re: Best way to kill a live TCP connection?, Alessandro Vesely
    - Re: Best way to kill a live TCP connection?, Pascal Hambourg
      - Re: Best way to kill a live TCP connection?, Grant Taylor
        
        Re: Best way to kill a live TCP connection?, Jan Engelhardt
        
        Re: Best way to kill a live TCP connection?, Alessandro Vesely
        
        Re: Best way to kill a live TCP connection?, Alessandro Vesely
        
        Re: Best way to kill a live TCP connection?, Gáspár Lajos
        
        Re: Best way to kill a live TCP connection?, Alessandro Vesely
    - Re: Best way to kill a live TCP connection?, Pablo Neira Ayuso
    - Re: Best way to kill a live TCP connection?, Pablo Neira Ayuso
nfq_bind_pf() simultaneously in 2 separate programs?, Ajay Lele
- Re: nfq_bind_pf() simultaneously in 2 separate programs?, Eric Leblond
  - Re: nfq_bind_pf() simultaneously in 2 separate programs?, Ajay Lele
    - Re: nfq_bind_pf() simultaneously in 2 separate programs?, Eric Leblond
Netmap on a single host?, Martin Fandel
- Re: Netmap on a single host?, Marek Kierdelewicz
How to redirect the package from eth0 to eth2, Roc Bai
- Re: How to redirect the package from eth0 to eth2, Maximilian Wilhelm
  - Re: How to redirect the package from eth0 to eth2, Roc Bai
    - Re: How to redirect the package from eth0 to eth2, Jan Engelhardt
      - Re: How to redirect the package from eth0 to eth2, Roc Bai
        
        Re: How to redirect the package from eth0 to eth2, Amos Jeffries
        
        Re: How to redirect the package from eth0 to eth2, Roc Bai
iptables -I with interface behavior, Fiedler Roman
- Re: iptables -I with interface behavior, Jan Engelhardt
new netfilter target - DNETMAP, Marek Kierdelewicz
- Re: new netfilter target - DNETMAP, Jan Engelhardt
  - Re: new netfilter target - DNETMAP, Marek Kierdelewicz
  - Re: new netfilter target - DNETMAP, Marek Kierdelewicz
limiting connection duration, Rich Rauenzahn
- Re: limiting connection duration, Marek Kierdelewicz
shaping vlans, Ethy H. Brito
- Re: shaping vlans, Marek Kierdelewicz
Why and when to use skb_make_writable()?, doug arro
- Re: Why and when to use skb_make_writable()?, Jan Engelhardt
unmet direct dependencies (NET && NET_SCHED), Toralf Förster
VLANs, Jonathan Tripathy
- Re: VLANs, John Haxby
- <Possible follow-ups>
- VLANs, Jonathan Tripathy
  - Re: VLANs, John Haxby
    - Re: VLANs, Jonathan Tripathy
      - Re: VLANs, Thomas Berg
        
        Re: VLANs, Jonathan Tripathy
      - Re: VLANs, John Haxby
        
        Re: VLANs, Jonathan Tripathy
        
        Message not available
        
        Re: VLANs, Jonathan Tripathy
        
        Re: VLANs, John Haxby
        
        Re: VLANs, Jonathan Tripathy
        
        Re: VLANs, John Haxby
        
        Re: VLANs, Jonathan Tripathy
        
        Re: VLANs, John Haxby
iptables hashlimit behaviour, Gurpreet Kaur
Xtables-addons 1.32/ipset-GENL 5.2, Jan Engelhardt
- Re: Xtables-addons 1.32/ipset-GENL 5.2, Jozsef Kadlecsik
  - Re: Xtables-addons 1.32/ipset-GENL 5.2, Jan Engelhardt
  - Re: Xtables-addons 1.32/ipset-GENL 5.2, Mr Dash Four
    - Re: Xtables-addons 1.32/ipset-GENL 5.2, Jozsef Kadlecsik
- Re: Xtables-addons 1.32/ipset-GENL 5.2, Pablo Neira Ayuso
  - Re: Xtables-addons 1.32/ipset-GENL 5.2, Jan Engelhardt
  - Re: Xtables-addons 1.32/ipset-GENL 5.2, Jozsef Kadlecsik
    - Re: Xtables-addons 1.32/ipset-GENL 5.2, Pablo Neira Ayuso
internet sharing issue, benjamin fernandis
- Re: internet sharing issue, Andrew Beverley
ipset 5.0 in xtables-addons?, Andrew Kraslavsky
- Re: ipset 5.0 in xtables-addons?, Jan Engelhardt
  - RE: ipset 5.0 in xtables-addons?, Andrew Kraslavsky
    - Re: ipset 5.0 in xtables-addons?, Mr Dash Four
Newby problem with conntrack-tools installation, Peter Kraus
- Re: Newby problem with conntrack-tools installation, Jonathan Petersson
  - Re: Newby problem with conntrack-tools installation, Jan Engelhardt
FAQ Link broken, Dennis Jacobfeuerborn
- Re: FAQ Link broken, Z.Steven.Schofield
ulogd2 segfault, Salih Gönüllü
- Re: ulogd2 segfault, Salih Gönüllü
  - Re: ulogd2 segfault, Pablo Neira Ayuso
    - Re: ulogd2 segfault, Salih Gönüllü
      - Re: ulogd2 segfault, Pablo Neira Ayuso
        
        Re: ulogd2 segfault, Salih Gönüllü
        
        Re: ulogd2 segfault, Pablo Neira Ayuso
routing error, J Webster
conntrackd: failover problems, Simone Zaffalon
- Re: conntrackd: failover problems, Pablo Neira Ayuso
  - Re: conntrackd: failover problems, Simone Zaffalon
    - Re: conntrackd: failover problems, Pablo Neira Ayuso
      - limiting not working for individual IPs, J Webster
      - Re: conntrackd: failover problems, Simone Zaffalon
        
        Re: conntrackd: failover problems, Pablo Neira Ayuso
[ANNOUNCE] libmnl 1.0.1 release, Pablo Neira Ayuso
can someone audit this script? [200 lines only], S Mathias
IP header mangling, doug arro
- Re: IP header mangling, Jan Engelhardt
[ANNOUNCE] ipset-5.2 released, Jozsef Kadlecsik
- Re: [ANNOUNCE] ipset-5.2 released, David Miller
  - Re: [ANNOUNCE] ipset-5.2 released, Jozsef Kadlecsik
Fair queuing with htb, Grégoire Leroy
- Re: Fair queuing with htb, Julien Vehent
  - Re: Fair queuing with htb, Grégoire Leroy
    - Re: Fair queuing with htb, Andrew Beverley
      - Re: Fair queuing with htb, Grégoire Leroy
        
        Re: Fair queuing with htb, Antoine Souques
        
        Message not available
        
        Re: Fair queuing with htb, Grégoire Leroy
        
        Re: Fair queuing with htb, Amos Jeffries
        
        Re: Fair queuing with htb, Grégoire Leroy
        
        Re: Fair queuing with htb, Andrew Beverley
        
        Re: Fair queuing with htb, Grégoire Leroy
[ANNOUNCE] ipset-5.1 released, Jozsef Kadlecsik
- Re: [ANNOUNCE] ipset-5.1 released, Mr Dash Four
  - Re: [ANNOUNCE] ipset-5.1 released, Jozsef Kadlecsik
ipv6 and a single port forward, Gary Smith
ipset 5: bug in parser for ipv6 when restoring, Elie Rosenblum
- Re: ipset 5: bug in parser for ipv6 when restoring, Jozsef Kadlecsik
ipsets: examples?, Reuben Martin
- Re: ipsets: examples?, Reuben Martin
- Re: ipsets: examples?, Jozsef Kadlecsik
  - Re: ipsets: examples?, Reuben Martin
    - Re: ipsets: examples?, Jozsef Kadlecsik
      - Re: ipsets: examples?, Reuben Martin
        
        Re: ipsets: examples?, Jozsef Kadlecsik
sFlow probe using netfilter/ULOG, Peter Phaal
[ANNOUNCE] ipset-5.0 released, Jozsef Kadlecsik
- Re: [ANNOUNCE] ipset-5.0 released, Jan Engelhardt
  - Re: [ANNOUNCE] ipset-5.0 released, Jozsef Kadlecsik
- Re: [ANNOUNCE] ipset-5.0 released, Rob Sterenborg (lists)
  - Re: [ANNOUNCE] ipset-5.0 released, Jozsef Kadlecsik
    - Re: [ANNOUNCE] ipset-5.0 released, Jan Engelhardt
      - Re: [ANNOUNCE] ipset-5.0 released, Jozsef Kadlecsik
        
        Re: [ANNOUNCE] ipset-5.0 released, Jan Engelhardt
        
        Re: [ANNOUNCE] ipset-5.0 released, Jozsef Kadlecsik
        
        Re: [ANNOUNCE] ipset-5.0 released, Jan Engelhardt
        
        Re: [ANNOUNCE] ipset-5.0 released, Jan Engelhardt
    - Re: [ANNOUNCE] ipset-5.0 released, Rob Sterenborg (lists)
    - Re: [ANNOUNCE] ipset-5.0 released, Rob Sterenborg (lists)
      - Re: [ANNOUNCE] ipset-5.0 released, Jozsef Kadlecsik
- Re: [ANNOUNCE] ipset-5.0 released, Mr Dash Four
  - Re: [ANNOUNCE] ipset-5.0 released, Jozsef Kadlecsik
    - Re: [ANNOUNCE] ipset-5.0 released, Mr Dash Four
      - Re: [ANNOUNCE] ipset-5.0 released, Jan Engelhardt
        
        Re: [ANNOUNCE] ipset-5.0 released, Mr Dash Four
      - Re: [ANNOUNCE] ipset-5.0 released, Jozsef Kadlecsik
        
        Re: [ANNOUNCE] ipset-5.0 released, Mr Dash Four
        
        Re: [ANNOUNCE] ipset-5.0 released, Dennis Jacobfeuerborn
        
        Re: [ANNOUNCE] ipset-5.0 released, Mr Dash Four
        
        Re: [ANNOUNCE] ipset-5.0 released, Jozsef Kadlecsik
        
        Re: [ANNOUNCE] ipset-5.0 released, Mr Dash Four
        
        Re: [ANNOUNCE] ipset-5.0 released, Jozsef Kadlecsik
        
        Re: [ANNOUNCE] ipset-5.0 released, Mr Dash Four
        
        Re: [ANNOUNCE] ipset-5.0 released, David Miller
        
        Re: [ANNOUNCE] ipset-5.0 released, Mr Dash Four
        
        Re: [ANNOUNCE] ipset-5.0 released, David Miller
        
        Re: [ANNOUNCE] ipset-5.0 released, Mr Dash Four
        
        Re: [ANNOUNCE] ipset-5.0 released, Jozsef Kadlecsik
        
        Re: [ANNOUNCE] ipset-5.0 released, Mr Dash Four
        
        Re: [ANNOUNCE] ipset-5.0 released, Jozsef Kadlecsik
        
        Re: [ANNOUNCE] ipset-5.0 released, Jozsef Kadlecsik
        
        Re: [ANNOUNCE] ipset-5.0 released, Mr Dash Four
        
        Re: [ANNOUNCE] ipset-5.0 released, Jozsef Kadlecsik
        
        Re: [ANNOUNCE] ipset-5.0 released, Mr Dash Four
        
        Re: [ANNOUNCE] ipset-5.0 released, Jozsef Kadlecsik
        
        Re: [ANNOUNCE] ipset-5.0 released, Mr Dash Four
        
        Re: [ANNOUNCE] ipset-5.0 released, Jozsef Kadlecsik
        
        Re: [ANNOUNCE] ipset-5.0 released, Mr Dash Four
        
        Re: [ANNOUNCE] ipset-5.0 released, Jozsef Kadlecsik
        
        Re: [ANNOUNCE] ipset-5.0 released, Mr Dash Four
        
        Re: [ANNOUNCE] ipset-5.0 released, Jozsef Kadlecsik
        
        Re: [ANNOUNCE] ipset-5.0 released, Mr Dash Four
        
        Re: [ANNOUNCE] ipset-5.0 released, Jozsef Kadlecsik
        
        Re: [ANNOUNCE] ipset-5.0 released, Jan Engelhardt
[ANNOUNCE] libmnl 1.0.0 release, Pablo Neira Ayuso
- Re: [ANNOUNCE] libmnl 1.0.0 release, Rob Sterenborg (lists)
  - Re: [ANNOUNCE] libmnl 1.0.0 release, Pablo Neira Ayuso
    - Re: [ANNOUNCE] libmnl 1.0.0 release, Pablo Neira Ayuso
    - Re: [ANNOUNCE] libmnl 1.0.0 release, Jan Engelhardt
      - Re: [ANNOUNCE] libmnl 1.0.0 release, Pablo Neira Ayuso
        
        Re: [ANNOUNCE] libmnl 1.0.0 release, David Miller
        
        Re: [ANNOUNCE] libmnl 1.0.0 release, Pablo Neira Ayuso
  - Re: [ANNOUNCE] libmnl 1.0.0 release, Pablo Neira Ayuso
ebtables ACCEPT policy vs ACCEPT target, Robert Pipca
- Re: ebtables ACCEPT policy vs ACCEPT target, Jan Engelhardt
  - Re: ebtables ACCEPT policy vs ACCEPT target, Robert Pipca
    - Re: ebtables ACCEPT policy vs ACCEPT target, Jan Engelhardt
      - Re: ebtables ACCEPT policy vs ACCEPT target, Robert Pipca
      - Re: ebtables ACCEPT policy vs ACCEPT target, Robert Pipca
        
        Re: ebtables ACCEPT policy vs ACCEPT target, Jan Engelhardt
        
        Re: ebtables ACCEPT policy vs ACCEPT target, Robert Pipca
PREROUTING DNAT *inconsistent* behavior, Alec Matusis
- Re: PREROUTING DNAT *inconsistent* behavior, Pascal Hambourg
  - RE: PREROUTING DNAT *inconsistent* behavior, Alec Matusis
    - Re: PREROUTING DNAT *inconsistent* behavior, Pascal Hambourg
      - RE: PREROUTING DNAT *inconsistent* behavior, Alec Matusis
        
        Re: PREROUTING DNAT *inconsistent* behavior, Pascal Hambourg
Bastion Firewall Host Redirect Question, iic1tls
- Re: Bastion Firewall Host Redirect Question, Jonathan Tripathy
  - RE: Bastion Firewall Host Redirect Question, iic1tls
    - Re: Bastion Firewall Host Redirect Question, /dev/rob0
- Re: Bastion Firewall Host Redirect Question, Billy Crook
  - Re: Bastion Firewall Host Redirect Question, Pascal Hambourg
- <Possible follow-ups>
- RE: Bastion Firewall Host Redirect Question, iic1tls
UDP MSS, ratheesh k
- <Possible follow-ups>
- Re: UDP MSS, Jan Engelhardt
  - Re: UDP MSS, ratheesh k
  - Re: UDP MSS, ratheesh k
    - Re: UDP MSS, John Haxby
      - Re: UDP MSS, ratheesh k
        
        Re: UDP MSS, Jan Engelhardt
        
        Re: UDP MSS, ratheesh k
        
        Re: UDP MSS, Jan Engelhardt
        
        Re: UDP MSS, ratheesh k
xtables 1.31 compilation errors, Mr Dash Four
- Re: xtables 1.31 compilation errors, Jan Engelhardt
  - Re: xtables 1.31 compilation errors, Mr Dash Four
    - Re: xtables 1.31 compilation errors, Mr Dash Four
      - Re: xtables 1.31 compilation errors, Mr Dash Four
        
        Re: xtables 1.31 compilation errors, Jan Engelhardt
        
        Message not available
        
        Message not available
        
        Re: xtables 1.31 compilation errors, Mr Dash Four
      - Re: xtables 1.31 compilation errors, Jan Engelhardt
Panic on 2.6.34+ and bridged firewall, Anthony Hinsinger
- Re: Panic on 2.6.34+ and bridged firewall, Thomas Wild
  - Re: Panic on 2.6.34+ and bridged firewall, Atle Solbakken
Netfilter packet receive problem from queue, Mehmet Sezgin
xtables/geoip vs ipset, Mr Dash Four
- Re: xtables/geoip vs ipset, Jan Engelhardt
  - Re: xtables/geoip vs ipset, Mr Dash Four
Need to translate source IP prior to routing for SNMP issue, Matty Sarro
- Re: Need to translate source IP prior to routing for SNMP issue, fuzzy_4711
iptable for ssh w/ changed port, Henry E.
- Re: iptable for ssh w/ changed port, Pascal Hambourg
conntrack problem with with ICMP defragmentenation, Shawn Delaney
cmd-owner alternative, Alon Bar-Lev
- Re: cmd-owner alternative, Jan Engelhardt
  - Re: cmd-owner alternative, Alon Bar-Lev
[ANNOUNCE] ipset-4.5 released, Jozsef Kadlecsik
cross compilation of xtables fails, Mr Dash Four
- Re: cross compilation of xtables fails, Jan Engelhardt
  - Re: cross compilation of xtables fails, Mr Dash Four
    - Re: cross compilation of xtables fails, Jan Engelhardt
      - Re: cross compilation of xtables fails, Mr Dash Four
        
        Re: cross compilation of xtables fails, Jan Engelhardt
        
        Re: cross compilation of xtables fails, Mr Dash Four
        
        Re: cross compilation of xtables fails, Jan Engelhardt
        
        Re: cross compilation of xtables fails, Mr Dash Four
        
        Re: cross compilation of xtables fails, Jan Engelhardt
        
        Re: cross compilation of xtables fails, Mr Dash Four
        
        Re: cross compilation of xtables fails, Jan Engelhardt
        
        Re: cross compilation of xtables fails, Mr Dash Four
        
        Re: cross compilation of xtables fails, Jan Engelhardt
kernel BUG: ipset 4.4, Mr Dash Four
- Re: kernel BUG: ipset 4.4, Jozsef Kadlecsik
  - Re: kernel BUG: ipset 4.4, Mr Dash Four
ip6tables redirect, Fred Zwarts
- Re: ip6tables redirect, Jan Engelhardt
  - Re: ip6tables redirect, Fred Zwarts
    - Re: ip6tables redirect, Jan Engelhardt
      - Re: ip6tables redirect, Jan Engelhardt
        
        Re: ip6tables redirect, Puneet Mohan
        
        Re: ip6tables redirect, Jan Engelhardt
- Re: ip6tables redirect, Puneet Mohan
NAT with forwarding to multiple destinations, Alberto Quattrini Li
- Message not available
  - Re: NAT with forwarding to multiple destinations, Alberto Quattrini Li
- Re: NAT with forwarding to multiple destinations, Jan Engelhardt
  - Re: NAT with forwarding to multiple destinations, Alberto Quattrini Li
    - Re: NAT with forwarding to multiple destinations, Jan Engelhardt
- <Possible follow-ups>
- Re: NAT with forwarding to multiple destinations, Reuben Martin
802.1ah (PBB) support in linux, Marek Kierdelewicz
conntrack table timeouts configuration problem, Raviv
Forward ssh to an internal server not working, Landy Landy
- Re: Forward ssh to an internal server not working, Jan Engelhardt
  - Re: Forward ssh to an internal server not working, Landy Landy
    - Re: Forward ssh to an internal server not working, Jan Engelhardt
      - Re: Forward ssh to an internal server not working, Landy Landy
Setting NOTRACK on all tcp connections, Raviv
- Re: Setting NOTRACK on all tcp connections, Pascal Hambourg
  - Re: Setting NOTRACK on all tcp connections, Jan Engelhardt
Packet filter port forwarding question, andy thomas
send packet received by nflog, Kfir Lavi
ClusterIP network slowdown, Michele Codutti
- Re: ClusterIP network slowdown, Edison Figueira
  - Re: ClusterIP network slowdown, Michele Codutti
    - Re: ClusterIP network slowdown, Michele Codutti
- Re: ClusterIP network slowdown, Pablo Neira Ayuso
  - Re: ClusterIP network slowdown, Michele Codutti
xtables-addons/geoip, Paul Freeman
- Re: xtables-addons/geoip, Jan Engelhardt
  - Re: xtables-addons/geoip, Paul Freeman
Denial-of-Service attack on UDP-port 5060 (SIP/VoIP), Secure-SIP-Server
- Re: Denial-of-Service attack on UDP-port 5060 (SIP/VoIP), Pascal Hambourg
  - Re: Denial-of-Service attack on UDP-port 5060 (SIP/VoIP), Secure-SIP-Server
    - Re: Denial-of-Service attack on UDP-port 5060 (SIP/VoIP), SISINT BA
    - Re: Denial-of-Service attack on UDP-port 5060 (SIP/VoIP), /dev/rob0
      - Re: Denial-of-Service attack on UDP-port 5060 (SIP/VoIP), SISINT BA
    - Re: Denial-of-Service attack on UDP-port 5060 (SIP/VoIP), Secure-SIP-Server
      - Re: Denial-of-Service attack on UDP-port 5060 (SIP/VoIP), /dev/rob0
        
        Re: Denial-of-Service attack on UDP-port 5060 (SIP/VoIP), Secure-SIP-Server
    - Re: Using iptables for throttling SMTP traffic, Secure-SIP-Server
      - Re: Using iptables for throttling SMTP traffic, Jan Engelhardt
      - Re: Using iptables for throttling SMTP traffic, lst_hoe02
[PATCH 0/8] ipvs: ipvs update for nf-next-2.6, Simon Horman
- [PATCH 3/8] IPVS: skb defrag in L7 helpers, Simon Horman
- [PATCH 1/8] IPVS: Backup, Prepare for transferring firewall marks (fwmark) to the backup daemon., Simon Horman
- [PATCH 4/8] IPVS: Handle Scheduling errors., Simon Horman
- [PATCH 7/8] IPVS: Backup, Change sending to Version 1 format, Simon Horman
- [PATCH 6/8] IPVS: Backup, Adding Version 1 receive capability, Simon Horman
- [PATCH 8/8] IPVS: Backup, adding version 0 sending capabilities, Simon Horman
- [PATCH 5/8] IPVS: Backup, Adding structs for new sync format, Simon Horman
- [PATCH 2/8] IPVS: Split ports[2] into src_port and dst_port, Simon Horman
- Re: [PATCH 0/8] ipvs: ipvs update for nf-next-2.6, Patrick McHardy
  - raccon+openvpn route problem...., Paulo Ricardo Bruck
    - Re: raccon+openvpn route problem...., Gáspár Lajos
      - Re: raccon+openvpn route problem...., Paulo Ricardo Bruck
    - Re: raccon+openvpn route problem...., fuzzy_4711
      - Re: raccon+openvpn route problem...., Paulo Ricardo Bruck
Xtables2 Netlink spec, Jan Engelhardt
- Re: Xtables2 Netlink spec, Jozsef Kadlecsik
  - Re: Xtables2 Netlink spec, Pablo Neira Ayuso
    - Re: Xtables2 Netlink spec, Jan Engelhardt
      - Re: Xtables2 Netlink spec, James Nurmi
        
        Re: Xtables2 Netlink spec, Jan Engelhardt
      - Re: Xtables2 Netlink spec, Pablo Neira Ayuso
        
        Re: Xtables2 Netlink spec, Thomas Graf
        
        Re: Xtables2 Netlink spec, Jan Engelhardt
        
        Re: Xtables2 Netlink spec, Thomas Graf
        
        Re: Xtables2 Netlink spec, Jan Engelhardt
        
        Re: Xtables2 Netlink spec, Pablo Neira Ayuso
        
        Re: Xtables2 Netlink spec, Pablo Neira Ayuso
        
        Re: Xtables2 Netlink spec, Jan Engelhardt
  - Re: Xtables2 Netlink spec, Jan Engelhardt
    - Re: Xtables2 Netlink spec, Jozsef Kadlecsik
      - Re: Xtables2 Netlink spec, Jesper Dangaard Brouer
        
        Error reporting in Netlink (Re: Xtables2 Netlink spec), Jan Engelhardt
        
        Re: Error reporting in Netlink (Re: Xtables2 Netlink spec), Thomas Graf
        
        Re: Error reporting in Netlink (Re: Xtables2 Netlink spec), Jan Engelhardt
        
        Re: Error reporting in Netlink (Re: Xtables2 Netlink spec), Thomas Graf
        
        Re: Error reporting in Netlink (Re: Xtables2 Netlink spec), Pablo Neira Ayuso
        
        Re: Error reporting in Netlink (Re: Xtables2 Netlink spec), Jozsef Kadlecsik
        
        Re: Error reporting in Netlink (Re: Xtables2 Netlink spec), Jan Engelhardt
        
        Re: Error reporting in Netlink (Re: Xtables2 Netlink spec), Patrick McHardy
        
        Re: Error reporting in Netlink (Re: Xtables2 Netlink spec), Thomas Graf
        
        Re: Error reporting in Netlink (Re: Xtables2 Netlink spec), Patrick McHardy
        
        Re: Error reporting in Netlink (Re: Xtables2 Netlink spec), Pablo Neira Ayuso
final packet not natted, rfc1918 address sent to internet, Dave Sparks
- Re: final packet not natted, rfc1918 address sent to internet, Jozsef Kadlecsik
  - Re: final packet not natted, rfc1918 address sent to internet, Pascal Hambourg
Mangled and ACCEPTed NFQUEUE packets getting dropped, Robert Surton (Burgess)
[OT] Network Firewall settings with sysctl, lst_hoe02
[PATCH v3] netfilter: nf_conntrack_sip: Handle Cisco 7941/7945 IP phones, Kevin Cernekee
- Re: [PATCH v3] netfilter: nf_conntrack_sip: Handle Cisco 7941/7945 IP phones, Eric Dumazet
  - Re: [PATCH v3] netfilter: nf_conntrack_sip: Handle Cisco 7941/7945 IP phones, David Woodhouse
    - Re: [PATCH v3] netfilter: nf_conntrack_sip: Handle Cisco 7941/7945 IP phones, Pablo Neira Ayuso
      - Re: [PATCH v3] netfilter: nf_conntrack_sip: Handle Cisco 7941/7945 IP phones, Kevin Cernekee
        
        Re: [PATCH v3] netfilter: nf_conntrack_sip: Handle Cisco 7941/7945 IP phones, Pablo Neira Ayuso
[PATCH 00/00] Remove deprecated items from Makefiles, Tracey Dent
- [PATCH 03/17] Net: can: Makefile: Remove deprecated kbuild goal definitions, Tracey Dent
- [PATCH 17/17] Net: wanrouter: Makefile: Remove deprecated kbuild goal definitions, Tracey Dent
- [PATCH 16/17] Net: sunrpc: auth_gss: Makefile: Remove deprecated kbuild goal definitions, Tracey Dent
- [PATCH 14/17] Net: rds: Makefile: Remove deprecated items, Tracey Dent
- [PATCH 15/17] Net: rxrpc: Makefile: Remove deprecated kbuild goal definitions, Tracey Dent
- [PATCH 07/17] Net: ipv4: netfilter: Makefile: Remove deprecated kbuild goal definitions, Tracey Dent
- [PATCH 08/17] Net: ipv6: netfiliter: Makefile: Remove deprecated kbuild goal definitions, Tracey Dent
- [PATCH 13/17] Net: phonet: Makefile: Remove deprecated kbuild goal definitions, Tracey Dent
- [PATCH 05/17] Net: dns_resolver: Makefile: Remove deprecated kbuild goal definitions, Tracey Dent
- [PATCH 06/17] Net: econet: Makefile: Remove deprecated kbuild goal definitions, Tracey Dent
- [PATCH 04/17] Net: ceph: Makefile: remove deprecated kbuild goal definitions, Tracey Dent
- [PATCH 12/17] Net: lapb: Makefile: Remove deprecated kbuild goal definitions, Tracey Dent
- [PATCH 11/17] Net: irda: irnet: Makefile: Remove deprecated kbuild goal definitions, Tracey Dent
- [PATCH 10/17] Net: irda: irlan: Makefile: Remove deprecated kbuild goal definitions, Tracey Dent
- [PATCH 01/17] Net: bluetooth: Makefile: Remove deprecated kbuild goal definitions, Tracey Dent
- [PATCH 09/17] Net: irda: ircomm: Makefile: Remove deprecated kbuild goal defintions, Tracey Dent
- [PATCH 02/17] Net: caif: Makefile: Remove deprecated items, Tracey Dent
- Re: [PATCH 00/00] Remove deprecated items from Makefiles, David Miller
[libnetfilter_queue] performance tests ?, Jocelyn Delalande
Global logging limit, Salih Gönüllü
which traffic scheduler can achieve SP QoS effect, using TC, liu
- Re: which traffic scheduler can achieve SP QoS effect, using TC, Stephen Hemminger
synproxy 2.6.36, Nilton Moura
iptables forwarding packets on the same interface, Daniel Scott
- Re: iptables forwarding packets on the same interface, Marek Kierdelewicz
  - Re: iptables forwarding packets on the same interface, Daniel Scott
    - Re: iptables forwarding packets on the same interface, Marek Kierdelewicz
      - Re: iptables forwarding packets on the same interface, Daniel Scott
traffic shapping with squid in the middle, Landy Landy
- Re: traffic shapping with squid in the middle, Marek Kierdelewicz
Automatic testing for eb,iptables rules?, Kfir Lavi
- Re: Automatic testing for eb,iptables rules?, Angel Inkov
-p udp and --ctstate NEW, /dev/rob0
ipvs: ipvs update for nf-next-2.6, Simon Horman
- [PATCH 5/6] ipvs: add static and read_mostly attributes, Simon Horman
- [PATCH 1/6] IPVS: Only match pe_data created by the same pe, Simon Horman
- [PATCH 2/6] IPVS: Make the cp argument to ip_vs_sync_conn() static, Simon Horman
- [PATCH 6/6] ipvs: remove shadow rt variable, Simon Horman
- [PATCH 4/6] IPVS: buffer argument to ip_vs_process_message() should not be const, Simon Horman
- [PATCH 3/6] IPVS: Remove useless { } block from ip_vs_process_message(), Simon Horman
- Re: ipvs: ipvs update for nf-next-2.6, Patrick McHardy
Re: [Ebtables-user] Log VLANs without interfaces., Oscar N
BROUTING VLANS, Asher Awelan
- Re: BROUTING VLANS, Grant Taylor
  - Re: BROUTING VLANS, Oskar Berggren
[PATCH/RFC v2] netfilter: nf_conntrack_sip: Handle Cisco 7941/7945 IP phones, Kevin Cernekee
[PATCH] Reduce number of pointer dereferences in IPv6 netfilter LOG module function dump_packet(), Jesper Juhl
- Re: [PATCH] Reduce number of pointer dereferences in IPv6 netfilter LOG module function dump_packet(), Eric Dumazet
  - Re: [PATCH] Reduce number of pointer dereferences in IPv6 netfilter LOG module function dump_packet(), Jesper Juhl
    - Re: [PATCH] Reduce number of pointer dereferences in IPv6 netfilter LOG module function dump_packet(), Jesper Juhl
[PATCH] Reduce number of pointer dereferences in IPv4 netfilter LOG module function dump_packet(), Jesper Juhl
- Re: [PATCH] Reduce number of pointer dereferences in IPv4 netfilter LOG module function dump_packet(), Eric Dumazet
  - Re: [PATCH] Reduce number of pointer dereferences in IPv4 netfilter LOG module function dump_packet(), Jesper Juhl
Testing bridge setup with packet generator and qemu, Kfir Lavi
[PATCH/RFC] netfilter: nf_conntrack_sip: Handle quirky Cisco phones, Kevin Cernekee
- Re: [PATCH/RFC] netfilter: nf_conntrack_sip: Handle quirky Cisco phones, Eric Dumazet
  - Re: [PATCH/RFC] netfilter: nf_conntrack_sip: Handle quirky Cisco phones, Kevin Cernekee
    - Re: [PATCH/RFC] netfilter: nf_conntrack_sip: Handle quirky Cisco phones, Eric Dumazet
      - Re: [PATCH/RFC] netfilter: nf_conntrack_sip: Handle quirky Cisco phones, Kevin Cernekee
        
        Re: [PATCH/RFC] netfilter: nf_conntrack_sip: Handle quirky Cisco phones, Patrick McHardy
        
        Re: [PATCH/RFC] netfilter: nf_conntrack_sip: Handle quirky Cisco phones, Kevin Cernekee
        
        Re: [PATCH/RFC] netfilter: nf_conntrack_sip: Handle quirky Cisco phones, Patrick McHardy
        
        Re: [PATCH/RFC] netfilter: nf_conntrack_sip: Handle quirky Cisco phones, Kevin Cernekee
      - Re: [PATCH/RFC] netfilter: nf_conntrack_sip: Handle quirky Cisco phones, Patrick McHardy
SFQ flow classifier, works for imq0, not for eth1, Ben Pfountz
- Re: SFQ flow classifier, works for imq0, not for eth1, Patrick McHardy
  - Re: SFQ flow classifier, works for imq0, not for eth1, Ben Pfountz
pppd or netfilter error?, Gáspár Lajos
[PATCH] netfilter: NF_HOOK_COND has wrong conditional, Eric Paris
- Re: [PATCH] netfilter: NF_HOOK_COND has wrong conditional, Jan Engelhardt
  - Re: [PATCH] netfilter: NF_HOOK_COND has wrong conditional, Patrick McHardy
iptables matching on TCP OPTIONS, burek
Redirecting flows among one machine's interfaces, Kostas Pelechrinis
- Re: Redirecting flows among one machine's interfaces, Jan Engelhardt
  - Re: Redirecting flows among one machine's interfaces, Kostas Pelechrinis
- Re: Redirecting flows among one machine's interfaces, Pascal Hambourg
How to transfer a IP packet based on ebtables and iptables?, Sumin Xia
- Re: How to transfer a IP packet based on ebtables and iptables?, Angel Inkov
- Re: How to transfer a IP packet based on ebtables and iptables?, Pascal Hambourg
Status of ebtables plus MPLS ?, Marcelo Sobral
Verdict with ebtables?, Kfir Lavi
- Re: Verdict with ebtables?, Angel Inkov
balance traffic between virtual interfaces on the same network, Tommaso Calosi
- Re: balance traffic between virtual interfaces on the same network, Jan Engelhardt
  - Re: balance traffic between virtual interfaces on the same network, Tommaso Calosi
    - Re: balance traffic between virtual interfaces on the same network, Pascal Hambourg
      - Re: balance traffic between virtual interfaces on the same network, Tommaso Calosi
IP options on netfilter, Fabien Danos
- Re: IP options on netfilter, Jan Engelhardt
- <Possible follow-ups>
- IP options on netfilter, Ernesto Ongaro
limit bandwidth equally, J Webster
- Re: limit bandwidth equally, Michele Petrazzo - Unipex
  - Re: limit bandwidth equally, J Webster
    - Re: limit bandwidth equally, Michele Petrazzo - Unipex
port based routing - help with tcpdump, Ilo Lorusso
- Re: port based routing - help with tcpdump, Pascal Hambourg
  - Message not available
    - Re: port based routing - help with tcpdump, Ilo Lorusso
      - Re: port based routing - help with tcpdump, Pascal Hambourg
        
        Re: port based routing - help with tcpdump, Ilo Lorusso
        
        Re: port based routing - help with tcpdump, Pascal Hambourg
unable to source and destination nat at the same time on multi-homed server, Joelly Alexander
- Re: unable to source and destination nat at the same time on multi-homed server, Pascal Hambourg
  - Re: unable to source and destination nat at the same time on multi-homed server, Joelly Alexander
conntrack module question?, Husnu Demir
- Re: conntrack module question?, Jan Engelhardt
  - Re: conntrack module question?, Husnu Demir
[PATCH 46/49] net/netfilter: Use vzalloc, Joe Perches
- Re: [PATCH 46/49] net/netfilter: Use vzalloc, Eric Dumazet
  - Re: [PATCH 46/49] net/netfilter: Use vzalloc, Joe Perches
    - Re: [PATCH 46/49] net/netfilter: Use vzalloc, Eric Dumazet
      - Re: [PATCH 46/49] net/netfilter: Use vzalloc, Jesper Juhl
    - Re: [PATCH 46/49] net/netfilter: Use vzalloc, Jiri Kosina
      - Re: [PATCH 46/49] net/netfilter: Use vzalloc, Joe Perches
libnetfilter_queue exiting on big tcp sessions, Rajkumar S
- Message not available
  - Message not available
    - Re: libnetfilter_queue exiting on big tcp sessions, Mistick Levi
      - Re: libnetfilter_queue exiting on big tcp sessions, Justin Yaple
        
        Re: libnetfilter_queue exiting on big tcp sessions, Mistick Levi
        
        Re: libnetfilter_queue exiting on big tcp sessions, Justin Yaple
        
        Re: libnetfilter_queue exiting on big tcp sessions, Eric Dumazet
        
        Re: libnetfilter_queue exiting on big tcp sessions, Justin Yaple
- Re: libnetfilter_queue exiting on big tcp sessions, Pablo Neira Ayuso
  - Re: libnetfilter_queue exiting on big tcp sessions, Alessandro Vesely
    - Re: libnetfilter_queue exiting on big tcp sessions, Pablo Neira Ayuso
iproute mailinglist?, Brent Clark
- Re: iproute mailinglist?, Jan Engelhardt
Stateless UDP PAT?, Brandon Black
Using iptables for throttling SMTP traffic, Alex
- Re: Using iptables for throttling SMTP traffic, Brent Clark
  - Re: Using iptables for throttling SMTP traffic, Alex
- Re: Using iptables for throttling SMTP traffic, Pascal Hambourg
  - Re: Using iptables for throttling SMTP traffic, Jan Engelhardt
Re-route non-http traffic, Robert Pipca
- Re: Re-route non-http traffic, Amos Jeffries
- Re: Re-route non-http traffic, Grant Taylor
[PATCH] ipv4: netfilter: arp_tables: fix information leak to userland, Vasiliy Kulikov
- Re: [PATCH] ipv4: netfilter: arp_tables: fix information leak to userland, Patrick McHardy
[PATCH] ipv4: netfilter: ip_tables: fix information leak to userland, Vasiliy Kulikov
- Re: [PATCH] ipv4: netfilter: ip_tables: fix information leak to userland, Patrick McHardy
[ANNOUNCE]: Release of iptables-1.4.10, Patrick McHardy
- Re: [ANNOUNCE]: Release of iptables-1.4.10, Jan Engelhardt
- Re: [ANNOUNCE]: Release of iptables-1.4.10, Mr Dash Four
  - Re: [ANNOUNCE]: Release of iptables-1.4.10, Patrick McHardy
ip_conntrack_acct, Pete Kay
Re: Delay in getting destroy events, Pablo Neira Ayuso
newbie: forward rule to itself, Mauricio Tavares
- Re: newbie: forward rule to itself, Jan Engelhardt
  - Re: newbie: forward rule to itself, Mauricio Tavares
    - Re: newbie: forward rule to itself, Jan Engelhardt
      - Re: newbie: forward rule to itself, Mauricio Tavares
- Re: newbie: forward rule to itself, Pascal Hambourg
netfilter stats, info and resources usage, Sandro Tosi
- Re: netfilter stats, info and resources usage, Jan Engelhardt
  - Re: netfilter stats, info and resources usage, Sandro Tosi
- Re: netfilter stats, info and resources usage, Jesper Dangaard Brouer
  - Re: netfilter stats, info and resources usage, Sandro Tosi
ipv6 tproxy / transparent proxy support?, Tomasz Chmielewski
- Re: ipv6 tproxy / transparent proxy support?, Amos Jeffries
  - Re: ipv6 tproxy / transparent proxy support?, Tomasz Chmielewski
    - Re: ipv6 tproxy / transparent proxy support?, Amos Jeffries
ClusterIP and MAC NAT, Michele Codutti
- Re: ClusterIP and MAC NAT, Grant Taylor
  - [SOLVED] Re: ClusterIP and MAC NAT, Michele Codutti
    - Re: [SOLVED] Re: ClusterIP and MAC NAT, Grant Taylor
Process iptables hook functions at IP layer with 'bridge-nf-call-iptables" enabled, Wei Huang
- Re: Process iptables hook functions at IP layer with 'bridge-nf-call-iptables" enabled, Jan Engelhardt
Blocking machines by both Mac Address and IP address, Scott Mayo
- Re: Blocking machines by both Mac Address and IP address, Jan Engelhardt
- Re: Blocking machines by both Mac Address and IP address, Andrew Beverley
  - Re: Blocking machines by both Mac Address and IP address, Scott Mayo
  - Re: Blocking machines by both Mac Address and IP address, Pascal Hambourg
    - Re: Blocking machines by both Mac Address and IP address, Andrew Beverley
- Re: Blocking machines by both Mac Address and IP address, Grant Taylor
password mailling-list, laugello
- Re: password mailling-list, Jan Engelhardt
Re: Redirect mirrored traffic to userspace app. [RESOLVED], Mateus Caruccio
- Re: Redirect mirrored traffic to userspace app. [RESOLVED], Grant Taylor
  - Re: Redirect mirrored traffic to userspace app. [RESOLVED], Mateus Caruccio
- Re: Redirect mirrored traffic to userspace app. [RESOLVED], Jan Engelhardt
  - Re: Redirect mirrored traffic to userspace app. [RESOLVED], Mateus Caruccio
    - Re: Redirect mirrored traffic to userspace app. [RESOLVED], Grant Taylor
      - Re: Redirect mirrored traffic to userspace app. [RESOLVED], Mateus Caruccio
    - Re: Redirect mirrored traffic to userspace app. [RESOLVED], Jan Engelhardt
  - Re: Redirect mirrored traffic to userspace app. [RESOLVED], Grant Taylor
Port Forwarding for Videoconferencing, frank
mmotm 2010-10-20 - netfilter Kconfig whinge, Valdis . Kletnieks
- Re: mmotm 2010-10-20 - netfilter Kconfig whinge, Patrick McHardy
Redirect mirrored traffic to userspace app., Mateus Caruccio
- Re: Redirect mirrored traffic to userspace app., Jan Engelhardt
  - Re: Redirect mirrored traffic to userspace app., Mateus Caruccio
    - Re: Redirect mirrored traffic to userspace app., Jan Engelhardt
- Re: Redirect mirrored traffic to userspace app., Grant Taylor
[PATCH] net: make ctl_path local and const, Changli Gao
Question about dropped packets, JD
- Re: Question about dropped packets, Brian Austin - Standard Universal
- Re: Question about dropped packets, Jan Engelhardt
^N in TRACE output, richard lucassen
xtables-addons ACCOUNT, Maarten Vanraes
- Re: xtables-addons ACCOUNT, Bob Miller
  - Re: xtables-addons ACCOUNT, Bob Miller
    - Re: xtables-addons ACCOUNT, Maarten Vanraes
      - Re: xtables-addons ACCOUNT, Jan Engelhardt
        
        Re: xtables-addons ACCOUNT, Maarten Vanraes
      - Re: xtables-addons ACCOUNT, Bob Miller
        
        Re: xtables-addons ACCOUNT, Maarten Vanraes
        
        Re: xtables-addons ACCOUNT, Jan Engelhardt
        
        Re: xtables-addons ACCOUNT, Maarten Vanraes
        
        Re: xtables-addons ACCOUNT, Jan Engelhardt
        
        Re: xtables-addons ACCOUNT, Maarten Vanraes
        
        Re: xtables-addons ACCOUNT, Jan Engelhardt
        
        Re: xtables-addons ACCOUNT, Maarten Vanraes
        
        Re: xtables-addons ACCOUNT, Jan Engelhardt
        
        Re: xtables-addons ACCOUNT, Maarten Vanraes
- <Possible follow-ups>
- Re: xtables-addons ACCOUNT, Maarten Vanraes
Gcc error trying to use nf_conntrack->id (dereferencing pointer to incomplete type), Italo Valcy
- Re: Gcc error trying to use nf_conntrack->id (dereferencing pointer to incomplete type), Italo Valcy
- Re: Gcc error trying to use nf_conntrack->id (dereferencing pointer to incomplete type), Jan Engelhardt
Time counter of connections (libnetfilter-conntrack?), Italo Valcy
- Re: Time counter of connections (libnetfilter-conntrack?), Pablo Neira Ayuso
  - Re: Time counter of connections (libnetfilter-conntrack?), Jan Engelhardt
    - Re: Time counter of connections (libnetfilter-conntrack?), Italo Valcy
      - Re: Time counter of connections (libnetfilter-conntrack?), Pablo Neira Ayuso
        
        Re: Time counter of connections (libnetfilter-conntrack?), Pablo Neira Ayuso
        
        Re: Time counter of connections (libnetfilter-conntrack?), Italo Valcy
    - Re: Time counter of connections (libnetfilter-conntrack?), Pablo Neira Ayuso
Incorrect UDP checksums when using nfq to modify packets, Paul Amaranth
how to install xtables extension to arbitrary path?, Xing Qianqian
- Re: how to install xtables extension to arbitrary path?, Jan Engelhardt
- Re: how to install xtables extension to arbitrary path?, Fabrice
  - Re: how to install xtables extension to arbitrary path?, Mr Dash Four
    - Re: how to install xtables extension to arbitrary path?, Jan Engelhardt
      - Re: how to install xtables extension to arbitrary path?, Mr Dash Four
      - Re: how to install xtables extension to arbitrary path?, Fabrice
        
        Re: how to install xtables extension to arbitrary path?, Jan Engelhardt
        
        Re: how to install xtables extension to arbitrary path?, Fabrice
        
        Re: how to install xtables extension to arbitrary path?, Jan Engelhardt
        
        Re: how to install xtables extension to arbitrary path?, Fabrice
        
        Re: how to install xtables extension to arbitrary path?, Fabrice
        
        Re: how to install xtables extension to arbitrary path?, Jan Engelhardt
[PATCH] secmark: do not return early if there was no error, Eric Paris
- Re: [PATCH] secmark: do not return early if there was no error, Patrick McHardy
  - Re: [PATCH] secmark: do not return early if there was no error, James Morris
sudo /sbin/iptables -v -t filter -A INPUT -p tcp --dport 22 -s 124.225.122.167 -j REJECT does not stop ssh attack, Red Cricket
- Re: sudo /sbin/iptables -v -t filter -A INPUT -p tcp --dport 22 -s 124.225.122.167 -j REJECT does not stop ssh attack, pauloric
- Re: sudo /sbin/iptables -v -t filter -A INPUT -p tcp --dport 22 -s 124.225.122.167 -j REJECT does not stop ssh attack, Jan Engelhardt
event-driven connection tracking, Mr Dash Four
- Re: event-driven connection tracking, Jan Engelhardt
  - Re: event-driven connection tracking, Mr Dash Four
    - Re: event-driven connection tracking, Jan Engelhardt
      - Re: event-driven connection tracking, Pablo Neira Ayuso
        
        Re: event-driven connection tracking, Mr Dash Four
        
        Re: event-driven connection tracking, Pablo Neira Ayuso
- Re: event-driven connection tracking, Pablo Neira Ayuso
  - Re: event-driven connection tracking, Mr Dash Four
NAT-PMP connections not tracked with nf_conntrack, Mr Dash Four
- Re: NAT-PMP connections not tracked with nf_conntrack, Jan Engelhardt
  - Re: NAT-PMP connections not tracked with nf_conntrack, Mr Dash Four
    - Re: NAT-PMP connections not tracked with nf_conntrack, Jan Engelhardt
      - Re: NAT-PMP connections not tracked with nf_conntrack, Mr Dash Four
        
        Re: NAT-PMP connections not tracked with nf_conntrack, Mr Dash Four
        
        Re: NAT-PMP connections not tracked with nf_conntrack, Jan Engelhardt
        
        Re: NAT-PMP connections not tracked with nf_conntrack, Mr Dash Four
        
        Re: NAT-PMP connections not tracked with nf_conntrack, Jan Engelhardt
D-NAT and S-NAT in IPv6, Peter Trenkamp
- Re: D-NAT and S-NAT in IPv6, Jan Engelhardt
  - Re: D-NAT and S-NAT in IPv6, Grant Taylor
    - Re: D-NAT and S-NAT in IPv6, Jan Engelhardt
I can't see any log activity for my LVS cluster, Navid Mohaghegh
[PATCH 1/5] secmark: do not return early if there was no error, Eric Paris
- [PATCH 3/5] security: secid_to_secctx returns len when data is NULL, Eric Paris
  - Re: [PATCH 3/5] security: secid_to_secctx returns len when data is NULL, Paul Moore
- [PATCH 2/5] secmark: make secmark object handling generic, Eric Paris
  - Re: [PATCH 2/5] secmark: make secmark object handling generic, Jan Engelhardt
    - Re: [PATCH 2/5] secmark: make secmark object handling generic, Pablo Neira Ayuso
      - Re: [PATCH 2/5] secmark: make secmark object handling generic, Eric Paris
        
        Re: [PATCH 2/5] secmark: make secmark object handling generic, Jan Engelhardt
        
        Re: [PATCH 2/5] secmark: make secmark object handling generic, Pablo Neira Ayuso

[Index of Archives] [Linux Netfilter Development] [Advanced Routing & Traffice Control] [Netem] [Berkeley Packet Filter] [Bugtraq] [Yosemite Discussion] [Linux Kernel Development]