• Harald Welte's avatar
    [NETFILTER]: Add ctnetlink subsystem · 080774a2
    Harald Welte authored
    Add ctnetlink subsystem for userspace-access to ip_conntrack table.
    This allows reading and updating of existing entries, as well as
    creating new ones (and new expect's) via nfnetlink.
    Please note the 'strange' byte order: nfattr (tag+length) are in host
    byte order, while the payload is always guaranteed to be in network
    byte order.  This allows a simple userspace process to encapsulate netlink
    messages into arch-independent udp packets by just processing/swapping the
    headers and not knowing anything about the actual payload.
    Signed-off-by: default avatarHarald Welte <laforge@netfilter.org>
    Signed-off-by: default avatarPatrick McHardy <kaber@trash.net>
    Signed-off-by: default avatarDavid S. Miller <davem@davemloft.net>
Kconfig 23.7 KB