Hi! I have read the connection tracking article from the site below. I have a query regarding the connection tracking for each tcp connection.
Site : http://www.it-sicherheitskoordinator.de/docs/sicherheit/firewall/iptables/connect-track/iptables_conntrack.html The state table is maintained at */proc/net/ip_conntrack for the tcp*. Can we access that entries in a PRE_ROUTING hook ? If yes then how can we access it ? Reading a file when you are in kernel space(PRE_ROUTING hook) is not recommended then how we can read entries? For e.g. there are 2 active tcp connections in an ESTABLISHED state. When a packet come to the interface i want to look up in the table and check to which tcp connection it belongs? Thanks n Regards, Jayesh -- ______________________________________________________________________ Pune GNU/Linux Users Group Mailing List: ([email protected]) List Information: http://plug.org.in/cgi-bin/mailman/listinfo/plug-mail Send 'help' to [EMAIL PROTECTED] for mailing instructions.
