#!/bin/sh

#

# /etc/init.d/conntrackd

#

# Created for RHEL/Centos by: James Shubin <purpleidea@gmail.com>

#

### BEGIN INIT INFO

# Provides: conntrackd

# Required-Start: $network $syslog

# Required-Stop: $network $syslog

# Should-Start: $named

# Should-Stop: $named

# Default-Start: 3 4 5

# Default-Stop: 0 1 6

# Short-Description: daemon for netfilter connection tracking

# Description: This is a daemon for replicating connection state across two

#              machines. See http://conntrack-tools.netfilter.org/

### END INIT INFO

# the following is the chkconfig init header

#

# conntrackd: daemon for netfilter connection tracking

#

# chkconfig: 345 97 03

# description: This is a daemon for replicating connection state across two

#              machines. See http://conntrack-tools.netfilter.org/

#

# processname: conntrackd

# pidfile: /var/run/conntrackd.pid

#

# Sanity checks

[ -x /usr/sbin/conntrackd ] || exit 0

# Source function library.

. /etc/rc.d/init.d/functions

SERVICE=conntrackd

PROCESS=conntrackd

CONNTRACKD_CONFIG=

CONNTRACKD_ARGS=

test -f /etc/sysconfig/conntrackd && . /etc/sysconfig/conntrackd

CONNTRACKD_CONFIG_ARGS=

if [ -n "$CONNTRACKD_CONFIG" ]

then

	CONNTRACKD_CONFIG_ARGS="-C $CONNTRACKD_CONFIG"

fi

RETVAL=0

start() {

	echo -n $"Starting $SERVICE: "

	# If Linux kernel is < 2.6.22, disable TCP window tracking

	if uname -r | {

		# version cmp courtesy of geirha in #bash

		IFS=.- read -r a b c _; [ "$((a*10000+b*100+c))" -lt 20622 ];

	}; then

		echo 1 > /proc/sys/net/ipv4/netfilter/ip_conntrack_tcp_be_liberal

	fi

	daemon --check $SERVICE $PROCESS -d $CONNTRACKD_CONFIG_ARGS $CONNTRACKD_ARGS

	RETVAL=$?

	echo

	[ $RETVAL -eq 0 ] && touch /var/lock/subsys/$SERVICE

}

stop() {

	echo -n $"Stopping $SERVICE: "

	killproc $PROCESS

	RETVAL=$?

	echo

	if [ $RETVAL -eq 0 ]; then

		rm -f /var/lock/subsys/$SERVICE

		rm -f /var/run/$SERVICE.pid

	fi

}

restart() {

	stop

	start

}

# XXX: can conntrackd reload?

reload() {

	echo -n $"Reloading $SERVICE configuration: "

	killproc $PROCESS -HUP

	RETVAL=$?

	echo

	return $RETVAL

}

# See how we were called.

case "$1" in

	start|stop|restart|reload)

		$1

		;;

	status)

		status $PROCESS

		RETVAL=$?

		;;

	force-reload)

		reload

		;;

	condrestart|try-restart)

		[ -f /var/lock/subsys/$SERVICE ] && restart || :

		;;

	*)

		echo $"Usage: $0 {start|stop|status|restart|condrestart|reload}"

		exit 2

		;;

esac

exit $RETVAL