Home
Reading
Searching
Subscribe
Sponsors
Statistics
Posting
Contact
Spam
Lists
Links
About
Hosting
Filtering
Features Download
Marketing
Archives
FAQ
Blog
 
Gmane
From: Pablo Neira Ayuso <pablo <at> netfilter.org>
Subject: [ANNOUNCE] conntrackd 0.9.0 released
Newsgroups: gmane.comp.security.firewalls.netfilter.devel
Date: Monday 18th September 2006 13:22:28 UTC (over 11 years ago)
Overview:

Conntrackd is the userspace daemon for the Connection Tracking System.
This daemon maintains a copy of the Connection Tracking System in
userspace. It is entirely written in C and is highly configurable and
easily extensible. Currently it covers the specific aspects of Stateful
Linux firewalls to enable high availability solutions and can be used as
statistics collector of the firewall use.

Status:

This project is under development, people feeling brave are encouraged
to test a send nice reports ;)

Future Plans:
- Support for TCP window tracking (still on discussion)
- Improve integration with keepalived (preemption issues)
- Test yet implemented IPv6 code
- Merge the conntrack tool and conntrackd packages: the conntrack tool
will be able to dump the conntrack table not only from the kernel but
also from conntrackd via UNIX sockets that, for example, can be used to
implement wildcards to dump and delete entries and monitor the current
traffic processed reducing the performance drop that suppose polling
from /proc/net/ip_conntrack
- Improve statistics info

More information available at:

http://people.netfilter.org/pablo/conntrackd/

Enjoy,

-- 
The dawn of the fourth age of Linux firewalling is coming; a time of
great struggle and heroic deeds -- J.Kadlecsik got inspired by J.Morris
 
CD: 3ms