Pablo Neira Ayuso <>2012-03-05 23:57:44 +0100
committerPablo Neira Ayuso <>2012-03-05 23:58:03 +0100
4bc3b22e426db1e592071ec2853fbd81525d4a61
tree7640e02ccc5cc47dac779ada60a970a211d888cd /
parentae77bf25af848e7c1db76a254e7ef4cdfa91c285 (diff)
NFCT: add `reliable' config option to enable reliable flow-based logging
Reliability comes at the cost of dropping new flows if the destroy event that ctnetlink delivers to us is lost. Under heavy stress this may imply dropping packets, you've been warned. If you do want not to lose one single flow-logging information, enable this. Signed-off-by: Pablo Neira Ayuso <>
@@ -122,6 +122,7 @@ plugin="@pkglibexecdir@/"
+#reliable=1 # enable reliable flow-based logging (may drop packets)
# Logging of system packet through NFLOG