> Message: 10 > From: [EMAIL PROTECTED] > To: [EMAIL PROTECTED] > Date: Mon, 2 Dec 2002 09:31:59 -0600 > Subject: [leaf-user] netfiltering in user space. > > > > There is a lot of allusion to iptables allowing you to do some > filtering in user space, but I can't seem to get started. > Like how to specify the target and to reject, accept. etc. > > I DO NOT want a complex solution like Snort or a proxy, I just want > to see certain packets, and make a simple decision. > > Can someone point me how to get started on this?
Under Debian I did apt-get install iptables-dev. Then do man libipq to get started. The target will be QUEUE. You must write a userspace program to receive the packets, rules to direct the packets you desire to target QUEUE, and finally, set the verdict on the packet to DROP or ACCEPT. There is also a perl interface to libipq. Depending on how far you need to peek into the packet, it may not be suitable for production use. I have some source code if you need it. I don't have it right here but can get it to you tomorrow. -- ----------------------------------------------------------------------- Chad Carr [EMAIL PROTECTED] ----------------------------------------------------------------------- ------------------------------------------------------- This SF.net email is sponsored by: Microsoft Visual Studio.NET comprehensive development tool, built to increase your productivity. Try a free online hosted session at: http://ads.sourceforge.net/cgi-bin/redirect.pl?micr0003en ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
