Look at ipproto switch table... That might help you find some function
pointers that would be logical to hijack in order to do this sort of
thing.
it's in /usr/src/sys/netinet/*.c somewhere.
andrew
On Fri, 8 Dec 2000, Alwyn Goodloe wrote:
>We are about to begin a little project that has
Lists Account wrote:
>
> Look at IPF/IPFW they both have state table stuff in them, and analyzing
> the ip header is done by both as well. I would suggest you hack ipf to do
> what you want if it doesnt do it already.
>
> Cheers
>
> Andrew
>
> On Fri, 8 Dec 2000, Alwyn Goodloe wrote:
>
> >
Look at IPF/IPFW they both have state table stuff in them, and analyzing
the ip header is done by both as well. I would suggest you hack ipf to do
what you want if it doesnt do it already.
Cheers
Andrew
On Fri, 8 Dec 2000, Alwyn Goodloe wrote:
>We are about to begin a little project that
On Fri, Dec 08, 2000 at 12:03:12AM -0500, Alwyn Goodloe wrote:
> i) look at an ip packet header. If some conditions are met let the packet pass
>otherwise reject the packet.
>
> ii) Look at ip packet headers of established connections and when certain
> conditions are met tear down the c
We are about to begin a little project that has the following requiremnet.
Perform IP packet filtering in the following way :
i) look at an ip packet header. If some conditions are met let the packet pass
otherwise reject the packet.
ii) Look at ip packet headers of established conn
5 matches
Mail list logo
