Expand description
Connection tracking (conntrack) for stateful packet inspection
Tracks network connections using 5-tuple keys (src_ip, dst_ip, src_port, dst_port, protocol). Maintains TCP state machine for accurate connection lifecycle tracking. Supports garbage collection of expired entries and enforces a maximum entry limit to prevent resource exhaustion.
Structs§
- Conntrack
Entry - A single connection tracking entry
- Conntrack
Key - 5-tuple identifying a unique connection
- Conntrack
Stats - Connection tracking statistics
- Conntrack
Table - Connection tracking table managing all active connections
- NatInfo
- NAT information associated with a connection
Enums§
- Conntrack
State - High-level connection tracking state
- TcpConn
State - Detailed TCP connection state machine
Functions§
- init
- Initialize the connection tracking subsystem
- update_
tcp_ state - Update the TCP connection state based on observed flags
- with_
conntrack - Access the global conntrack table