Hacker Harald Welte On Netfilter/iptables - Slashdot

Follow Slashdot blog updates by subscribing to our blog RSS feed

×

Hacker Harald Welte On Netfilter/iptables 7

Posted by timothy on Monday February 18, 2002 @10:54AM from the sending-packets-where-they-ought-to-go dept.

Iptable writes: "Underlinux.com.br has an interview with Harald Welte, member of netfilter/iptables core team. Harald told about the future of iptables2 with new kernel family (2.5.x/2.6.x) and other things like libiptables that will be a common interface to deal with iptables firewall rules. To read the complete interview visit UnderLinux.Com.Br."

This discussion has been archived. No new comments can be posted.

Hacker Harald Welte On Netfilter/iptables

Load All Comments

Search 7 Comments Log In/Create an Account

Comments Filter:

Thank goodness for the universal translator (Score:1)

by Alpha27 ( 211269 ) writes:

Babelfish of course.

http://babelfish.altavista.com/urltrurl?url=http %3 A%2F%2Fwww.underlinux.com.br%2Fsections.php%3Fop%3 Dviewarticle%26artid%3D106&lp=pt_en&tt=url&urltext =&doit=done
- Re:Thank goodness for the universal translator (Score:2)
  
  by Lord Sauron ( 551055 ) writes:
  
  And it gives a
  
  BabelFish Error 3012
  We're sorry we've encountered an error with your request.
  If you think this is a bug we should know about? Send us e-mail and let us know the following:
  
  * What browser you were using.
  * The operating system you are on.
  * The type of translation you were trying when this error occurred.
  
  Questions? Check out our FAQs.
  
  The error encountered is:
  
  Not a valid referer
  
  You do have to go from babelfish. Or change your referer. Hey, BTW, is there any browser that automatically changes the referer to the very own page you're accessing ? This would prevent these sort of problems, but would screw lots of logs :)
Notes (Score:2, Informative)

by LarryRiedel ( 141315 ) writes:

I think this reflects some of what is in the interview.

There is coming a userland library interface to netfilter which is more like rtnetlink(3), called nfnetlink (netfilter netlink), replacing the current setsockopt interface.

There is going to be an "iptables2" which has some new functionality related to a change in the data model for the tables - they will appear more like linked lists of linked lists than like a two-dimensional array, and a bunch chunk of the functionality which was in the iptables command line program is going to be moved into a library so other applications at the level of iptables can also utilitize that functionality.

Connection tracking / NAT will be enhanced to support more high level application protocol interactions than FTP, such as IRC, H.323, etc.

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Related Links Top of the: day, week, month.

321 commentsShould a Variable's Type Come After Its Name?
293 commentsAre Scrums a Cancer?
258 commentsC++ Creator Rebuts White House Warning
228 commentsWhite House Urges Devs To Switch To Memory-Safe Programming Languages
226 comments34% of AP CS Students Couldn't Solve This Java-Based 2D Array Question

The hardest part of climbing the ladder of success is getting through the crowd at the bottom.