ak@suse.de said: >It's not possible using raw sockets, but you can do it via appropiate >netfilter rules and the netfilter user queue target. Then all packets >not reinjected by the user queue daemon will get lost. This is a 2.4 >solution. True, but netfilter is IP-only AFAIK. I've hacked in a way to do this for *all* protocols, but as far as I can tell, you can't do it without dropping the skb before handing it off to the registered packet_types in net_rx_action(). -- Jason Lunz Trellis Network Security j@trellisinc.com http://www.trellisinc.com/ - : send the line "unsubscribe linux-net" in the body of a message to majordomo@vger.kernel.org
