LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 08-07-2012, 03:20 AM   #1
kulhar
LQ Newbie
 
Registered: Aug 2012
Posts: 2

Rep: Reputation: Disabled
Alter iptables conntrack entries / add additional field in tuple?


Is there any way to play with iptable conntrack tuple , i want to add one more field/variable in tuple and want to see the same in conntrack log .
please help me ...

eg : conntrack -L tcp 17 2 src=X.X.X.X dst=X.x.x.x sport=42403 dport=53 src=x.x.x.x dst=x.x.x.x sport=53 dport=42403 [ASSURED] mark=0 use=1

i need output like:

tcp 17 2 src=X.X.X.X dst=X.x.x.x sport=42403 dport=53 src=x.x.x.x dst=x.x.x.x sport=53 dport=42403 [ASSURED] mark=0 connapp=facebook use=1

Last edited by kulhar; 08-09-2012 at 01:20 AM.
 
Old 08-08-2012, 12:32 PM   #2
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,332
Blog Entries: 55

Rep: Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533
Quote:
Originally Posted by kulhar View Post
i need
Never mind the short-lived nature of some network connections, sites relying on content distribution networks or other aspects of networking, if you think a "connapp" identifier is vital for your conntrack operations then I'd say just go code it. The kernel and conntrack tool sources are available for modification.
 
Old 08-09-2012, 01:09 AM   #3
kulhar
LQ Newbie
 
Registered: Aug 2012
Posts: 2

Original Poster
Rep: Reputation: Disabled
Thanks unSpawn
Can you please provide me some guidelines or any document which i can refer in order to achieve my goal .

Thanks in advance ....
 
Old 08-09-2012, 05:37 AM   #4
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,332
Blog Entries: 55

Rep: Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533
No, sorry, but the kernel and conntrack tool sources are available for modification. I guess you'll just have to start by reading a lot.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Conntrack - Iptables - SIP machu_nair Linux - Security 0 11-22-2010 11:41 AM
IPTables/Conntrack MikeQ Linux - Server 1 08-04-2009 02:02 PM
Script that will automatically add entries to the iptables file kaplan71 Linux - Security 2 12-10-2007 02:34 PM
iptables conntrack concepts question eantoranz Linux - Networking 0 01-06-2005 09:59 AM
iptables & conntrack f1uke Linux - Security 2 12-02-2003 11:11 AM


All times are GMT -5. The time now is 09:19 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration