* Thinking about conntrack
@ 2017-01-13 9:17 webman
0 siblings, 0 replies; only message in thread
From: webman @ 2017-01-13 9:17 UTC (permalink / raw)
To: netfilter
Hello !
I am not sure, to ask on the right list at this
moment ;-)
I am just working with conntrack on my firewall
machine, because it can show connections from
extern to any LAN machine.
I usually do this using "conntrack -E".
If I go in parallel with tcpdump, I see more
connections, then these visible with the above
conntrack command.
After some thinking, I made a "conntrack -L"
and see these connections.
Why I am writing is, that the shown behavior
is a bit suboptimal, especially, if one scripts
this.
I just think, that a argument "-M" (say for
migrate) should initially show the table and then
switch over to track via events. Without this,
you may miss new connections until the event
processing starts.
Thanks anywway,
Manfred
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2017-01-13 9:17 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2017-01-13 9:17 Thinking about conntrack webman
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.