Re: [PATCH v2 1/1] netfilter: load nf_log_syslog on enabling nf_conntrack_log_invalid
From: Lance Yang
Date: Mon Jul 14 2025 - 08:09:23 EST
On 2025/5/28 19:05, Florian Westphal wrote:
Lance Yang <ioworker0@xxxxxxxxx> wrote:
From: Lance Yang <lance.yang@xxxxxxxxx>
When no logger is registered, nf_conntrack_log_invalid fails to log invalid
packets, leaving users unaware of actual invalid traffic. Improve this by
loading nf_log_syslog, similar to how 'iptables -I FORWARD 1 -m conntrack
--ctstate INVALID -j LOG' triggers it.
Acked-by: Florian Westphal <fw@xxxxxxxxx>
A gentle reminder for this patch, as the merge window is approaching ;)
Please let me know if any changes are needed.
Thanks,
Lance