Darren Reed wrote:
I missed the start of this thread, presumably because "health" triggered a "it's spam" callback in my brain...
I have called this new program Callis because of the very long uptime you will get! Just kidding..
Look at the l4check subdirectory in the ipfilter distribution.
Precisely! Except a little more fleshed out, and generic. However, it does demonstrate just how easy it is to add rules with ioctl() instead of pipe()ing off the on disk binaries. I am unsure if I saw any documentation regarding the structures passed along, but with both sides of the source it should be ok to break down.
Only thing I don't know, which Clifford mentioned, is how frequently the ioctl()s change between versions. Will we always be chasing to catchup?
Thanks!
Lund
-- Jorgen Lundman | <[EMAIL PROTECTED]> Unix Administrator | +81 (0)3 -5456-2687 ext 1017 (work) Shibuya-ku, Tokyo | +81 (0)90-5578-8500 (cell) Japan | +81 (0)3 -3375-1767 (home)
