The [conntrackd] daemon also provides support for userspace helpers, such as:
DHCPv6
MDNS
SLP
SSDP
RPC
NFS version 3
Oracle TNS
Does that RPC has anything to do with "Remote Procedure Call"? -.-
I've seen the first set of helpers on LUCI, do we also have the second set of helpers (conntrackd daemon) running in the background?
If so, how should I disable them? Including the first set of helpers. I would like to even go one step further and block/drop all of these protocols (both incoming and outgoing) on the firewall.
Does everyone think this is an "ok" idea? I remember reading conntrack having more functions like tracking UDP packets or something, so I'm guessing it's assisting firewall to do its job with udp packets. So now I'm not sure if disabling conntrack (instead of just helpers) is a good idea. But I'd love to disable/remove/make everything simpler as long as it wont negatively affect an important module like the firewall.