Hi,
TProxy version 2.0.2 has been released for Linux 2.4.31 and Linux
2.6.12. Finally, it's possible to run TProxy on the latest 2.6 kernels.
Apart from sigificant code updates to work with the new 2.6 NAT code,
this release has serious connection tracking entry reference counting
changes. These should fix all TCP conntrack entry leakage problems
experienced so far.
The release tarballs are available here:
http://www.balabit.com/downloads/tproxy/
MD5 checksums of the release tarballs:
58a43e1ac3c31a24e9eea2b7fbd7ea13 cttproxy-2.4.31-2.0.2.tar.gz
0f5380e9cbc1d432e392bfb6a6d1c7d3 cttproxy-2.6.12-2.0.2.tar.gz
--
Regards,
Krisztian Kovacs
Hi,
> Do you have any patches applied on 2.6.10 apart from tproxy? Vanilla
>2.6.10 had a TCP connection tracking bug which caused some TCP
>connections linger in the conntrack table for way too much time. Please
>take a look at the original tproxy for 2.6.10 announcement in the
>mailing list archives:
...
> Nothing suspicious here, so I'd wait for your experience with the
>2.6.10 TCP conntrack patch.
Things seem to be running fine now with the conntrack patch. During day
time the maximun value is reaching 3000 entries and in the nights it
reduces below 700. :)
Thanks a lot.
Mohammed Riyaz P.
--
http://www.fastmail.fm - And now for something completely differentÂ…