[PATCH 20/38] netns ct: NOTRACK in netns

Jan Engelhardt jengelh at medozas.de
Fri Sep 5 06:08:50 PDT 2008


On Friday 2008-09-05 08:25, Patrick McHardy wrote:
>> > I hope so :) A different possiblity suggest by Pablo some time ago
>> > would be to mark untracked packets in skb->nfctinfo and not
>> > attach a conntrack at all.
>> 
>> Indeed, I remember that :). I left that patch of the table time ago [1].
>> There's a nf_reset call missing as Patrick said at that time. I can
>> recover it if you like the idea.
>
> I think that would be a good idea.

Would that work? Right now, a ct==NULL indicates the 'INVALID' state,
and overloading it with 'UNTRACKED' does not seem nice.


More information about the Containers mailing list