Hi, I was wondering if anyone had considered doing a data driven conntrack/NAT module so that anyone with a half decent CPU could handle things like quake or netmeeting without having to look for/ create a different module every time. Of course there is no point in using it for modules that already exist, but where someone comes up with a module requirement, they can first implement it straight away and then wait for or implement the required module themselves. Basically what I was thinking was to try coming up with a simple packet identification/implementation code for this (short, so the iptables commands are not too big) I haven't looked at any code yet - will do that shortly - but I thought I might ask the question first and get any opinions on the idea. (Or make sure it doesn't already exist :-) -- -Cheers -Andrew
MS ... if only he hadn't been hang gliding!
