News
Oct 08, 2012: The Netfilter Core Team has released conntrack-tools-1.4.0.
Jul 31, 2012: The Netfilter Core Team has released conntrack-tools-1.2.2.
May 27, 2012: The Netfilter Core Team has released conntrack-tools-1.2.1.
May 26, 2012: The Netfilter Core Team has released conntrack-tools-1.2.0.
Feb 27, 2011: The Netfilter Core Team has released conntrack-tools-1.0.0.
Jan 28, 2010: The conntrack-tools user manual has been updated. You may be interested in looking at the information that describes how to use of the iptables' CT target. Go give it some reading!
Jul 15, 2010: The Netfilter Core Team has released conntrack-tools-0.9.15.
Mar 13, 2010: Browsing the web looking for conntrackd-related news I found that Firewall Builder 4.0 beta, a popular GUI for firewalls, seems to include initial support for conntrackd according to this blog entry. BTW, I do not use this project in any of my setups but I know people that they do.
Jan 28, 2010: IEEE Internet Computing magazine has published the article "Demystifying cluster-based fault-tolerant stateful firewalls in the 2009 November/December issue. It has been authored by Pablo Neira Ayuso among others. You can get the preprint file by clicking here if you dare to give it a read!
Dec 28, 2009: The Netfilter Core Team has released conntrack-tools-0.9.14.
Jul 17, 2009: The Netfilter Core Team has released conntrack-tools-0.9.13. With regards to the command line tool, this release includes support for all the protocol helpers available in 2.6.30 that were missing so far (SCTP, UDPlite, DCCP and GRE). The daemon updates includes a fix for a memory leak that can be triggered under heavy load and if you set a hashtable in user-space that is smaller than the one in the kernel. Moreover, it adds initial support for DCCP and SCTP state-synchronization.
Apr 1, 2009: conntrack-tools 0.9.12 has been released that includes a new `-S' option for the command line tool and a generic infrastructure to allow using different protocols to replicate state-changes, currently unicast UDP and multicast are supported.
Feb 24, 2009: Michael Schwartzkopff has released a good manual on how to setup conntrackd with heartbeat and fwbuilder, you can get it from http://www.multinet.de/HAFirewall/HAFirewall.pdf. Michael is also the author of Clusterbau mit Linux-HA Version 2 (only available in German at the moment, perhaps anytime soon in English? ;)).
Feb 21, 2009: conntrack-tools 0.9.11 has been released that includes accumulated fixes, one improvement for the polling approach and a couple of new features.
Jan 25, 2009: One month of heavy development later, I'm happy to announce a new release of the conntrack-tools. This releases includes interesting features in conntrackd like the multi-dedicated link, extended statistics and polling-based support. The command line interface conntrack includes a new command -C to display the number of entries in the state and expectation tables. Help testing is appreciated.
Dec 18, 2008: I'm happy to announce a new development release of the conntrack-tools. This release includes bugfixes, improvements and new features. As usual, upgrade is recommended ;).
Oct 30, 2008: I'm happy to announce the initial version of the conntrack-tools user manual. Check the support section for more information.
Oct 21, 2008: conntrack-tools 0.9.8 has been released, it includes important fixes, improvements and new user-oriented documentation. Upgrade is recommended.
May 31, 2008: conntrack-tools 0.9.7 has been released, it includes important improvements, new features and bugfixes. Upgrade is strongly recommended.
Mar 8, 2008: conntrack-tools 0.9.6 has been released, includes important improvements, new features and bugfixes: IPv6 support and new manpage for conntrackd, XML and timestamp support for conntrack, secmark support, improved performance, support for VLAN interfaces, support for related connections and NAT sequence adjustments (helpers), improved statistics support, tons of cleanups and improvements from Max Kellermann among many others. Upgrade is strongly recommended!
Dec 27, 2007: Major website rewrite. I think that I'm getting some CSS skills :-).
Aug 8, 2007: added kernel options (explicitly) and Fedora comments in the install section.
Jul 31, 2007: support for old conntrackd releases has been discontinued. Please, upgrade to conntrack-tools 0.9.5.
Jul 29, 2007: conntrack-tools 0.9.5 has been released, includes important improvements.
Jul 2, 2007: conntrack-tools 0.9.4 has been released, includes several bugfixes and improvements.
May 23, 2007: conntrack-tools 0.9.3 has been released, includes lots of changes and an improved version of the NACK protocol. Upgrade recommended.
May 19, 2007: Just started the merging process of conntrack and conntrackd into the package conntrack-tools.
January 18, 2007: Maik Hentsche will be defending his CS thesis work entitled "Highly Available Netfilter Firewalls in Enterprise Environments" on January the 29th in Chemnitz, Germany. If you're interested in attending, contact maik at mm-double dot de.
January 17, 2007: conntrackd 0.9.2 has been released, the main changes are the unnoficial libraries drop and the new NACK based protocol.
November 13, 2006: I'll be giving a talk on conntrackd in Granada.
November 6, 2006: conntrackd 0.9.1 released. Includes tons of updates, upgrade is recommended.
October 29, 2006: Added logos, thanks to Daniel Garcia Moreno for his great artwork.
October 8, 2006: SVN has been set up for conntrackd, check the support section for more information.
September 18, 2006: conntrackd 0.9.0 released. This release includes tons of changes, please upgrade.
September 4, 2006: conntrackd 0.8.3 released, check the download section
September 1, 2006: Launched conntrackd website