:) YES is the answer to your Question, And YES why need I reinvent the wheel if I can use a ready LIB Or such, but the problem is that I am helping out a friend in a project for a network course, and its now a challenge for me to come up With a way to do this using raw sockets. (url..hmmm give me some time To get back to Jordan, I am in Poland now and I don't have my references with me, u can always google if u wanna know about it and don't wanna Wait for me)
I was told that by windows architecture, you can't do that using raw sockets This doctor at uni says it can be done, I am taking this as a personal challenge, this way I learn more and I can prove him right or wrong. Till now, I see that he is wrong :D heheh... Thanks Fadi .K -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Zaid Amireh Sent: Tuesday, December 27, 2005 8:10 PM To: Jordan Linux User Group Mailing list Subject: Re: [JoLUG-General] A small qustion regarding RAW sockets On 12/27/05, Fadi Kahhaleh <[EMAIL PROTECTED]> wrote: > Zaid thanks, but you seem to misunderstood my point. > > There are several ways you can actually intercept a packet (IP based > Which means udp,tcp, icmp...etc) > 1)Driver Level, which means writing code that works closely with HW. why write scary ioctl's when you have libpcap? > 2)IP Filters and Interface Filters which his provided my M$ on NT plantform > and later. the Netfilter framework in the kernel. > > I know how to deal with both methods, but none are acceptable in my case :s > So I know and have written a small program that sniffs the packets > And displahys them, i.e src,dst, port of each packet...etc > > What I want to do is to say for example, stop all incoming packets if > They are on port 53 (dst port). All this using raw socket. what is raw socket? URL please. > Which is the > third > Method from the above two. > So in raw socket I have already done sniffing, now I need to > Be able to filter or block it rather than taking a copy of it. > > Thanks answer me this, do you *just* want to filter packets according to some set rules regarding IP or TCP characteristics? yes or no? -- --------------------------- Netiquette -> http://www.dtcc.edu/cs/rfc1855.html Netiquette Nazi -> http://redwing.hutman.net/%7Emreed/warriorshtm/netiquettenazi.htm --------------------------- _______________________________________________ General mailing list [email protected] http://mail.jolug.org/mailman/listinfo/general_jolug.org _______________________________________________ General mailing list [email protected] http://mail.jolug.org/mailman/listinfo/general_jolug.org
