]> git.ipfire.org Git - ipfire-2.x.git/commit
projects / ipfire-2.x.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7c98204) | patch
firewall: Log packets dropped due to conntrack INVALID state
authorPeter Müller <peter.mueller@ipfire.org>
Sat, 18 Dec 2021 13:47:25 +0000 (14:47 +0100)
committerPeter Müller <peter.mueller@ipfire.org>
Fri, 14 Jan 2022 14:16:24 +0000 (14:16 +0000)
commit0e7bfb1343d28069acfbaacb957cd199f8ead099
treeab56263b07ff19ea99ca2d113ac1958dcd0772fetree | snapshot
parent7c9820474675638123fdd1b13f4211e135a2f07acommit | diff
firewall: Log packets dropped due to conntrack INVALID state

In case of faulty connection tracking, this ensures such packets are
logged, to make analysing network incidents less troublesome. Since
NewNotSYN is handled before, where logging can be turned off for systems
running on weak flash devices, the amount of log messages emitted here
should be neglectible.

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
src/initscripts/system/firewall diff | blob | blame | history
IPFire 2.x development tree