On Wednesday 24 March 2004 21:47, Jason Boxman wrote: > Hi. > > Does anyone know how to create a rule using tcng that functions like this > iptables rule? > <snip> > class( <$ack> ) > if ip_hl == 0x5 && > (ip_len & 0xffc0) && > (raw[33].b >> 4) & 1;
The correct rule appears to be: if ip_hl == 0x5 && ! (ip_len & 0xffc0) && (raw[33].b >> 4) & 0xff Using '&& tcp_ACK' didn't seem to have the desired effect. > Thanks! -- Jason Boxman Perl Programmer / *NIX Systems Administrator Shimberg Center for Affordable Housing | University of Florida http://edseek.com/ - Linux and FOSS stuff _______________________________________________ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
