#14076: layer7 netfilter module is not created in recent trunk
----------------------+--------------------------------
Reporter: duvi | Owner: developers
Type: defect | Status: closed
Priority: normal | Milestone: Chaos Calmer 15.05
Component: kernel | Version: Trunk
Resolution: wontfix | Keywords:
----------------------+--------------------------------
Comment (by bobby846@…):
i am trying to port l7filter on kernel 3.4.i did the changes layer 7
accordingly and i am able to apply the rules ./iptables -I OUTPUT -m
layer7 --l7proto ssh -j DROP,(and also for INPUT) where i can see them
applied using ./iptables -L.but when i try to ssh,it is not blocking the
protocol,it is allowing me ssh.i started debugging the xt_layer7.c
(inserting xt_layer7.ko in to kernel).and found that i am unable to get
master connection tracking ---- while (master_ct(master_conntrack) !=
NULL) at line 463.so it is ubale to compare with the protocol pattern.can
some one give me ideas how to get the master connection tarcking getting
worked..
i have attached xt_layer7.c
Thanks and regards
bobby
--
Ticket URL: <https://dev.openwrt.org/ticket/14076#comment:49>
OpenWrt <http://openwrt.org>
Opensource Wireless Router Technology
_______________________________________________
openwrt-tickets mailing list
[email protected]
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-tickets
