All;
I am trying to filter out tcp and udp traffic at the kernel level via
pf_ring, but can not find any documentation as to how to actually craft a rule,
or how you would make one persist. The only reference I can find is to
/proc/net/pf_ring/dev/${interface}/rules
Which would not be persistent. If I wanted to filter out all tcp 443 traffic
before handing it off to the application layer, say for Snort or Bro, how do I
do that at the pf_ring level persistently? Thanks much!
Erik
_______________________________________________
Ntop-misc mailing list
[email protected]
http://listgateway.unipi.it/mailman/listinfo/ntop-misc
