Slashdot Mirror

← Back to Stories (view on slashdot.org)

Hacker Harald Welte On Netfilter/iptables

Posted by timothy on from the sending-packets-where-they-ought-to-go dept.

Iptable writes: "Underlinux.com.br has an interview with Harald Welte, member of netfilter/iptables core team. Harald told about the future of iptables2 with new kernel family (2.5.x/2.6.x) and other things like libiptables that will be a common interface to deal with iptables firewall rules. To read the complete interview visit UnderLinux.Com.Br."

7 comments

  1. Thank goodness for the universal translator by Alpha27 · · Score: 1

    Babelfish of course.

    http://babelfish.altavista.com/urltrurl?url=http %3 A%2F%2Fwww.underlinux.com.br%2Fsections.php%3Fop%3 Dviewarticle%26artid%3D106&lp=pt_en&tt=url&urltext =&doit=done

    1. Re:Thank goodness for the universal translator by Lord+Sauron · · Score: 2
      And it gives a

      BabelFish Error 3012
      We're sorry we've encountered an error with your request.
      If you think this is a bug we should know about? Send us e-mail and let us know the following:

      * What browser you were using.
      * The operating system you are on.
      * The type of translation you were trying when this error occurred.

      Questions? Check out our FAQs.

      The error encountered is:

      Not a valid referer

      You do have to go from babelfish. Or change your referer. Hey, BTW, is there any browser that automatically changes the referer to the very own page you're accessing ? This would prevent these sort of problems, but would screw lots of logs :)
  2. Is it just me by Lord+Sauron · · Score: 0, Offtopic

    or does anybody else also think the guy that appears on that article looks like a Hanson brother ?

  3. Notes by LarryRiedel · · Score: 2, Informative

    I think this reflects some of what is in the interview.

    There is coming a userland library interface to netfilter which is more like rtnetlink(3), called nfnetlink (netfilter netlink), replacing the current setsockopt interface.

    There is going to be an "iptables2" which has some new functionality related to a change in the data model for the tables - they will appear more like linked lists of linked lists than like a two-dimensional array, and a bunch chunk of the functionality which was in the iptables command line program is going to be moved into a library so other applications at the level of iptables can also utilitize that functionality.

    Connection tracking / NAT will be enhanced to support more high level application protocol interactions than FTP, such as IRC, H.323, etc.

  4. [OT] links fucked up by Anonymous Coward · · Score: 0

    Why does slashdot insert random spaces into the URLs, for example there's one after urltext=. It drives me nuts.