About
Coreteam
History
License
Thanks
PGP key
Projects
iptables
nftables
libnftnl
libnfnetlink
libnetfilter_acct
libnetfilter_log
libnetfilter_queue
libnetfilter_conntrack
Downloads
libnetfilter_cttimeout
libnetfilter_cthelper
conntrack-tools
libmnl
nfacct
ipset
ulogd
xtables-addons
News
iptables 1.8.11 released
nftables 1.1.1 released
libnftnl 1.2.8 released
libnetfilter_conntrack 1.1.0 released
nftables 1.1.0 released
libnftnl 1.2.7 released
Arturo Borrero enters emeritus
Eric Leblond enters emeritus
nftables 1.0.9 released
iptables 1.8.10 released
conntrack-tools 1.4.8 released
nftables 1.0.8 released
libnftnl 1.2.6 released
nftables 1.0.7 released
libnftnl 1.2.5 released
iptables 1.8.9 released
nftables 1.0.6 released
libnftnl 1.2.4 released
ulogd 2.0.8 released
conntrack-tools 1.4.7 released
nftables 1.0.5 released
libnftnl 1.2.3 released
nftables 1.0.4 released
libnftnl 1.2.2 released
nftables 1.0.3 released
iptables 1.8.8 released
libnetfilter_cttimeout 1.0.1 released
libnetfilter_cthelper 1.0.1 released
libmnl 1.0.5 released
libnfnetlink 1.0.2 released
nftables 1.0.2 released
libnetfilter_conntrack 1.0.9 released
settlement with Patrick McHardy
Documentation
Mailing Lists
List Rules
netfilter-announce list
netfilter list
netfilter-devel list
Contact
Licensing
GPL licensing terms
GPL compliance FAQ
Supporting netfilter

The netfilter.org "libnetfilter_conntrack" project

What is `libnetfilter_conntrack`?

libnetfilter_conntrack is a userspace library providing a programming interface (API) to the in-kernel connection tracking state table. The library libnetfilter_conntrack has been previously known as libnfnetlink_conntrack and libctnetlink. This library is currently used by conntrack-tools among many other applications.

Dependencies

libnetfilter_conntrack requires libnfnetlink and a kernel that includes the nfnetlink_conntrack subsystem (initial support >= 2.6.14, recommended >= 2.6.18).

Main Features

listing/retrieving entries from the kernel connection tracking table
inserting/modifying/deleting entries from the kernel connection tracking table
listing/retrieving entries from the kernel expect table
inserting/modifying/deleting entries from the kernel expect table

License

Since 0.9.1, this library is released under GPLv2+. Previous versions were released under GPLv2.

Documentation

You can check the library documentation generated in doxygen format.

Git Tree

The current development version of libnetfilter_conntrack can be accessed at https://git.netfilter.org/libnetfilter_conntrack/.

Authors

libnetfilter_conntrack has been written by Pablo Neira and Harald Welte.

Python Binding

pynetfilter_conntrack is a Python binding of libnetfilter_conntrack written by Victor Stinner. You can visit his official web site at https://pypi.org/project/pynetfilter_conntrack/.