Date: Fri, 8 Dec 2000 12:14:23 -0500 (EST) From: "Andrew R. Reiter" <arr@watson.org> To: Alwyn Goodloe <agoodloe@gradient.cis.upenn.edu> Cc: freebsd-hackers@FreeBSD.ORG Subject: Re: Packet Header Filtering Message-ID: <Pine.NEB.3.96L.1001208121256.49144A-100000@fledge.watson.org> In-Reply-To: <Pine.SOL.4.21.0012080002140.29544-100000@gradient.cis.upenn.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
Look at ipproto switch table... That might help you find some function pointers that would be logical to hijack in order to do this sort of thing. it's in /usr/src/sys/netinet/*.c somewhere. andrew On Fri, 8 Dec 2000, Alwyn Goodloe wrote: > We are about to begin a little project that has the following requiremnet. > > Perform IP packet filtering in the following way : > > > i) look at an ip packet header. If some conditions are met let the packet pass > otherwise reject the packet. > > > ii) Look at ip packet headers of established connections and when certain > conditions are met tear down the connection. > > > Obviously this isn't the kind of thing we will be using the usual > firewall software, at least not as I understand the software. What I > want to know from you FreeBSD hackers is: > > i) if anyone has done something similar do you have any advice. > ii) Anyone know where I should start hacking. Would it be best to try to > hack the firewall code or the ipforwarding code.... > > Any such advise would be helpful. > > > Alwyn Goodloe > agoodloe@gradient.cis.upenn.edu > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-hackers" in the body of the message > *-------------................................................. | Andrew R. Reiter | arr@fledge.watson.org | "It requires a very unusual mind | to undertake the analysis of the obvious" -- A.N. Whitehead To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.NEB.3.96L.1001208121256.49144A-100000>