[NETFILTER]: Add support for permanent expectations A permanent expectation exists until timeing out and can expect multiple related connections. Signed-off-by: Patrick McHardy <kaber@trash.net> Signed-off-by: David S. Miller <davem@davemloft.net>

commit: 2248bcfcd8fb622ec88b8587d0c1f139635ffd2e [log] [tgz]
author: Patrick McHardy <kaber@trash.net> Tue Sep 06 15:06:42 2005 -0700
committer: David S. Miller <davem@davemloft.net> Tue Sep 06 15:06:42 2005 -0700
tree: d3b38076592384bfb69b526f5ec3a8c2222fd4cd
parent: 9261c9b042547d01eeb206cf0e21ce72832245ec [diff] [blame]
diff --git a/include/linux/netfilter_ipv4/ip_conntrack.h b/include/linux/netfilter_ipv4/ip_conntrack.h
index 088742b..7e033e9 100644
--- a/include/linux/netfilter_ipv4/ip_conntrack.h
+++ b/include/linux/netfilter_ipv4/ip_conntrack.h

@@ -263,6 +263,9 @@
 	/* Unique ID */
 	unsigned int id;
 
+	/* Flags */
+	unsigned int flags;
+
 #ifdef CONFIG_IP_NF_NAT_NEEDED
 	/* This is the original per-proto part, used to map the
 	 * expected connection the way the recipient expects. */
@@ -272,6 +275,8 @@
 #endif
 };
 
+#define IP_CT_EXPECT_PERMANENT	0x1
+
 static inline struct ip_conntrack *
 tuplehash_to_ctrack(const struct ip_conntrack_tuple_hash *hash)
 {
commit	2248bcfcd8fb622ec88b8587d0c1f139635ffd2e	[log] [tgz]
author	Patrick McHardy <kaber@trash.net>	Tue Sep 06 15:06:42 2005 -0700
committer	David S. Miller <davem@davemloft.net>	Tue Sep 06 15:06:42 2005 -0700
tree	d3b38076592384bfb69b526f5ec3a8c2222fd4cd
parent	9261c9b042547d01eeb206cf0e21ce72832245ec [diff] [blame]