lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Wed, 26 Jun 2019 18:06:45 +0700 From: Naruto Nguyen <narutonguyen2018@...il.com> To: netfilter-devel@...r.kernel.org, netdev@...r.kernel.org, netfilter@...r.kernel.org Subject: Question about nf_conntrack_proto for IPsec Hi everyone, In linux/latest/source/net/netfilter/ folder, I only see we have nf_conntrack_proto_tcp.c, nf_conntrack_proto_udp.c and some other conntrack implementations for other protocols but I do not see nf_conntrack_proto for IPsec, so does it mean connection tracking cannot track ESP or AH protocol as a connection. I mean when I use "conntrack -L" command, I will not see ESP or AH connection is saved in conntrack list. Could you please help me to understand if conntrack supports that and any reasons if it does not support? Thanks a lot, Brs, Naruto
Powered by blists - more mailing lists