Hi if you are using standard drivers and looking for kernel filtering, please take a look at pfring_add_filtering_rule() in http://www.ntop.org/guides/pf_ring/api/pfring.html you can filter based on all the fields defined in the data structure defined at https://github.com/ntop/PF_RING/blob/dev/kernel/linux/pf_ring.h#L443
Alfredo > On 27 Jul 2018, at 19:59, Ajit Sarnaik <[email protected]> wrote: > > Hello Folks, > > Has anybody used the filtering capability of PFRING please. We would like to > capture DHCP request and DNS query packets and responses as well. Any > pointers would be helpful. > > Regards, > > Ajit Sarnaik > [email protected] > <mailto:[email protected]>_______________________________________________ > Ntop mailing list > [email protected] > http://listgateway.unipi.it/mailman/listinfo/ntop
signature.asc
Description: Message signed with OpenPGP
_______________________________________________ Ntop mailing list [email protected] http://listgateway.unipi.it/mailman/listinfo/ntop
