

Hacker Harald Welte On Netfilter/iptables 7
Iptable writes: "Underlinux.com.br has an interview with Harald Welte, member of netfilter/iptables core team. Harald told about the future of iptables2 with new kernel family (2.5.x/2.6.x) and other things like libiptables that will be a common interface to deal with iptables firewall rules. To read the complete interview visit UnderLinux.Com.Br."
Thank goodness for the universal translator (Score:1)
http://babelfish.altavista.com/urltrurl?url=htt
Re:Thank goodness for the universal translator (Score:2)
You do have to go from babelfish. Or change your referer. Hey, BTW, is there any browser that automatically changes the referer to the very own page you're accessing ? This would prevent these sort of problems, but would screw lots of logs
Notes (Score:2, Informative)
I think this reflects some of what is in the interview.
There is coming a userland library interface to netfilter which is more like rtnetlink(3), called nfnetlink (netfilter netlink), replacing the current setsockopt interface.
There is going to be an "iptables2" which has some new functionality related to a change in the data model for the tables - they will appear more like linked lists of linked lists than like a two-dimensional array, and a bunch chunk of the functionality which was in the iptables command line program is going to be moved into a library so other applications at the level of iptables can also utilitize that functionality.
Connection tracking / NAT will be enhanced to support more high level application protocol interactions than FTP, such as IRC, H.323, etc.