Re: Selectively refusing TCP connections

From: Andi Kleen (ak@suse.de)
Date: Thu May 24 2001 - 14:49:06 EST

Next message: Erik Mouw: "Re: Dying disk and filesystem choice."
Previous message: Johannes Erdfelt: "Re: Dual Athlon on 2.2.19 ?"
In reply to: David Ford: "Re: Selectively refusing TCP connections"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, May 24, 2001 at 12:15:44PM -0700, David Ford wrote:
> Is there an example somewhere of this?

I don't have one handy, but basically you have to hack libpcap a bit
to push the generated filters using SO_ATTACH_FILTER onto a socket.

The format (LPF) understood by the kernel is a superset of the BPF
stack machine code generated by libpcap. See linux/filter.h and the BPF
documentation.

It's main drawback is that it doesn't support variable length headers
properly.

-Andi
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Erik Mouw: "Re: Dying disk and filesystem choice."
Previous message: Johannes Erdfelt: "Re: Dual Athlon on 2.2.19 ?"
In reply to: David Ford: "Re: Selectively refusing TCP connections"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Thu May 31 2001 - 21:00:19 EST