path: root/
diff options
authorPablo Neira Ayuso <>2008-06-02 01:37:24 +0200
committerPablo Neira Ayuso <>2008-06-02 01:37:24 +0200
commit66c0ebb31d976b5d1b0b8ab7242918165927ca32 (patch)
tree9fb1276b062fb15fffa80db14ce3c15a0c4aa6bc /
parentf72bf0ed59d14270d7b820626f9c7a7c67f40c00 (diff)
improve netlink overrun handling of NFCT
This patch improves the overrun handling. The logic behind this patch consists of two steps: 1) duplicate the netlink buffer size if the size does not goes after the upper boundary. 2) scheduling a resynchronization (in two seconds) with the kernel conntrack table if we hit ENOBUFS. During the resynchronization, the NFCT plugin dumps the current table and purges the objects that do not exist anymore. This patch also introduces two new clauses, the netlink_socket_buffer_size and netlink_socket_buffer_maxsize that set the size of the netlink socket buffer.
Diffstat (limited to '')
1 files changed, 2 insertions, 0 deletions
diff --git a/ b/
index 4339650..a63026a 100644
--- a/
+++ b/
@@ -87,6 +87,8 @@ plugin="@libdir@/ulogd/"
# IPv4 logging through NFLOG