[tproxy] tproxy version 1.2.0 released

KOVACS Krisztian hidden@balabit.hu
Tue, 09 Dec 2003 17:00:01 +0100


   TProxy 1.2.0 has been released. This is the first the release of the 
1.2 stable branch, with substantial changes since 0.25. From the API 
standpoint, it is compatible with 0.25. There are no new features, only 
bugfixes and internal changes. More important internal changes:

   - new connection tracking entry deletion code, which does not require 
scanning the whole connection tracking hash
   - a completely rewritten /proc/net/tproxy interface
   - hooks into the network stack at more appropriate points (right after 
TCP/UDP unhash)

   NOTE: this release is strictly for Linux 2.4.23, it is _not_ compatible 
with 2.4.22 (and earlier). Even though the patch may apply without 
problems, it _will_not_work_. If you really need it, please let me know.

   The experimental NAT entry reuse patch is also in the package,
however, please do not use it unless you really have to. (You may try it
if you have a lot of TCP traffic and you see "failed to apply NAT mapping"
messages. It causes the NAT core drop clashing transparently proxied TCP 
connections in the TIME_WAIT state, which may help a lot in certain cases.)

   As always, the package is available from


   MD5 checksum of cttproxy-2.4.23-1.2.0.tar.gz:

     Krisztian KOVACS