diff options
| author | Pablo Neira Ayuso <pablo@netfilter.org> | 2013-07-06 14:48:04 +0200 |
|---|---|---|
| committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2013-07-06 15:17:25 +0200 |
| commit | e2c6576e775652c35d336afa0551676339c6a793 (patch) | |
| tree | d998fe683c0dc28c991f5d43fe74899c3dd747c1 /include/conntrackd.h | |
| parent | c4ce3ffb9a9f0288376312206529eb1428f3aeca (diff) | |
| download | conntrack-tools-e2c6576e775652c35d336afa0551676339c6a793.tar.gz conntrack-tools-e2c6576e775652c35d336afa0551676339c6a793.zip | |
conntrackd: deprecate `Family' in configuration file
This patch deprecates the `Family' tweak in the configuration file.
Several reasons for this:
* If not specified, this was default to IPv4 only in table dumps from
the kernel. However, non-IPv4 events were still received. This is
inconsistent.
* It's an early tweak that was not documented (not included in any
of the example files).
If we want to support any sort of consistent filtering based on the
family, this should happen in the filtering code.
After this patch, conntrackd uses AF_UNSPEC to dump the conntrack and
expectation tables from the kernel.
Reported-by: Bill Fink <billfink@mindspring.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'include/conntrackd.h')
| -rw-r--r-- | include/conntrackd.h | 1 |
1 files changed, 0 insertions, 1 deletions
diff --git a/include/conntrackd.h b/include/conntrackd.h index 19e613c..d338fc4 100644 --- a/include/conntrackd.h +++ b/include/conntrackd.h @@ -104,7 +104,6 @@ struct ct_conf { unsigned int netlink_buffer_size_max_grown; int nl_overrun_resync; unsigned int flags; - int family; /* protocol family */ unsigned int resend_queue_size; /* FTFW protocol */ unsigned int window_size; int poll_kernel_secs; |