On Wed, Feb 20, 2002 at 11:03:22AM +, Gianni Tedesco wrote:
The reason I made them seperate is that they are quite large (12KB
altogether), the tables get written over for every packet each rule
sees. It seems like a waste of memory to have them replicated once per
rule per cpu if I
On Thu, 21 Feb 2002, andre achternaam wrote:
In the if statement ctinfo is checked for some conditions. The way they test
the conditions tells me that the IP_CT_ESTABLISHED and IP_CT_IS_REPLY are
bitmasks because they are added and they are part of an enumaration. When i
ctinfo doesn't store
I have been using Henrik Nordstrom's CONNMARK patch on a production system
since May last year very successfully. It works very well and allows you
to mark individual connections with a mark that can later be restored on
other packets related to the same connection and then used for routing. I
On Thu, 2002-02-21 at 17:16, Andreas Herrmann wrote:
Hi,
--- include/libiptc/libip6tc.h~Fri Jan 5 16:22:37 2001
+++ include/libiptc/libip6tc.h Wed Feb 20 17:49:54 2002
@@ -6,7 +6,7 @@
#include linux/netfilter_ipv6/ip6_tables.h
#ifndef IP6T_MIN_ALIGN
-#define IP6T_MIN_ALIGN
Last time I posted it there was some disagreement regarding when/how
mangle was to be called. Maybe Harald has made up his mind now?
I have not had any reason to make any changes to CONNMARK since last
posted I think (the last filemodification date is May 20). As you say
it works very well
On Wednesday, 13 February 2002, at 14:33:59 +0100,
Harald Welte wrote:
On Tue, Feb 12, 2002 at 11:12:39PM +0100, Jose Luis Domingo Lopez wrote:
The strange part is that this will show up with just some FTP clients
and/or remote FTP servers. For example, text-mode web browser links
