[v3.2.24] ct: endless loop when initializing netfilter/ct cache
Holger Eitzenberger
holger at eitzenberger.org
Wed Oct 22 07:41:38 PDT 2014
> This small program I currently use to selectively delete conntracks
> from the Kernel. This is e. g. usefull for a firewall-like
> product with UNREPLIED UDP conntracks, as they need to be removed
> after changing NATs.
Turns out to be more of like a performance regresssion, as same
program built against libnl v3.2.13 is considerably faster - even on a
box with more conntracks...
More information about the libnl
mailing list