Thanks Khamis,
I didn’t have time to check it out,
but I did stumble on html man pages
And I clicked on raw(7)… so I guess it’s
the same man 7 raw right J,,,
It didn’t lead me to any
breakthroughs L
But never the less, thnx
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Khamis Siksek
Sent: Wednesday, December 28, 2005
8:34 AM
To: Jordan
Linux User Group Mailing list
Subject: Re: [JoLUG-General] A
small qustion regarding RAW sockets
I do not know if this
helps or not "man 7 raw"
On 12/27/05, Fadi
Kahhaleh <[EMAIL PROTECTED]>
wrote:
:)
YES is the answer to your Question,
And YES why need I reinvent the wheel if I can use a ready LIB
Or such, but the problem is that I am helping out a friend in a project
for a network course, and its now a challenge for me to come up
With a way to do this using raw sockets. (url..hmmm give me some time
To get back to Jordan, I am
in Poland
now and I don't have my references
with me, u can always google if u wanna know about it and don't wanna
Wait for me)
I was told that by windows architecture, you can't do that using raw sockets
This doctor at uni says it can be done, I am taking this as a personal
challenge, this way I learn more and I can prove him right or wrong.
Till now, I see that he is wrong :D heheh...
Thanks
Fadi .K
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]
On Behalf
Of Zaid Amireh
Sent: Tuesday, December 27, 2005 8:10 PM
To: Jordan Linux User Group Mailing list
Subject: Re: [JoLUG-General] A small qustion regarding RAW sockets
On 12/27/05, Fadi Kahhaleh <[EMAIL PROTECTED]>
wrote:
> Zaid thanks, but you seem to misunderstood my point.
>
> There are several ways you can actually intercept a packet (IP based
> Which means udp,tcp, icmp...etc)
> 1)Driver Level, which means writing code that works closely with HW.
why write scary ioctl's when you have libpcap?
> 2)IP Filters and Interface Filters which his provided my M$ on NT
plantform
> and later.
the Netfilter framework in the kernel.
>
> I know how to deal with both methods, but none are acceptable in my case
:s
> So I know and have written a small program that sniffs the packets
> And displahys them, i.e src,dst, port of each packet...etc
>
> What I want to do is to say for example, stop all incoming packets if
> They are on port 53 (dst port). All this using raw socket.
what is raw socket? URL please.
> Which is the
> third
> Method from the above two.
> So in raw socket I have already done sniffing, now I need to
> Be able to filter or block it rather than taking a copy of it.
>
> Thanks
answer me this, do you *just* want to filter packets according to some
set rules regarding IP or TCP characteristics? yes or no?
--
---------------------------
Netiquette -> http://www.dtcc.edu/cs/rfc1855.html
Netiquette Nazi ->
http://redwing.hutman.net/%7Emreed/warriorshtm/netiquettenazi.htm
---------------------------
_______________________________________________
General mailing list
[email protected]
http://mail.jolug.org/mailman/listinfo/general_jolug.org
_______________________________________________
General mailing list
[email protected]
http://mail.jolug.org/mailman/listinfo/general_jolug.org
--
Khamis Siksek
http://saksoook.blogspot.com
