Custom Query (115 matches)
Results (10 - 12 of 115)
Ubuntu does not have a /var/log/messages, hence the default Deb install on ubuntu will result in an error.
Temporarily one can use "/var/log/syslog" instead
sysctl -w net.netfilter.nf_conntrack_acct=1
(or via /etc/sysctl.conf, or any other method that is integrated with your distro)
Afterwards which new connections will be byte/packet-counted as well.
|#140||fixed||vuurmuur relies on obsolete CONFIG_NF_CONNTRACK_PROCFS kernel option|
(This report is based on vuurmuur-0.8_beta4 which is not yet included in the version list below.)
According to Victor, vuurmuur checks at startup if /proc/net/ip_conntrack or /proc/net/nf_conntrack exist on the system and dies with "Error (-1): no connection tracking support in the kernel (in: check_iptcaps:782)" otherwise.
However, CONFIG_NF_CONNTRACK_PROCFS is marked as obsolete on Linux:
Maybe a better approach would be to check whether the conntrack userspace utility (the location is configured with vuurmuur_conf: conntrack location) is present and only fall back to the /proc/net entries otherwise.
Question: Do other parts of the vuurmuur code also access the /proc/net entires?