TFTP conntrack research.

TFTP conntrack research.

[megacrabogoahell .]

I'm researching the stateful FW. I've got an interesing situation of
how does the TFTP passes FW rules. It's clear to me how does
nf_conntrack_tftp works. But could you please answer me, how many
sessions does the TFTP transfer requiers?
I mean, when the client asks server for a transfer with WRQ or RRQ,
the src ip/port and dst ip/port are not same when tftp reply came back
to the client. Does this packet belongs to the session of 1st
packet(RQ creates NEW session, and then it goes as ESTABLISHED?), or
it belongs to the new session.

Thank you so much.

Re: TFTP conntrack research.

[Pascal Hambourg]

Hello,

megacrabogoahell . a écrit :
> I'm researching the stateful FW. I've got an interesing situation of
> how does the TFTP passes FW rules. It's clear to me how does
> nf_conntrack_tftp works. But could you please answer me, how many
> sessions does the TFTP transfer requiers?
> I mean, when the client asks server for a transfer with WRQ or RRQ,
> the src ip/port and dst ip/port are not same when tftp reply came back
> to the client. Does this packet belongs to the session of 1st
> packet(RQ creates NEW session, and then it goes as ESTABLISHED?), or
> it belongs to the new session.

The data tranfer creates a RELATED connection.