Hi, On Fri, 28 Feb 2003, Ravi Kiran G wrote: > if i open a raw socket on a given protocol number, linux passes packets belonging to that protocol both to my raw socket > and to the associated protocol handler as well. > is there any way to ensure that ONLY my raw socket gets the packet? > i need to do this for a stateful-firewall testing where i need to cook up some illegal TCP packets. > i am being flooded with RSTs which i want to avoid at all costs. > any help would be appreciated. Use netfilter to block outgoing RST, or use PF_PACKET instead of PF_INET/SOCK_RAW and netfilter for incomming packets. -- Philippe Biondi <biondi@ cartel-securite.fr> Cartel Sécurité Security Consultant/R&D http://www.cartel-securite.fr Phone: +33 1 44 06 97 94 Fax: +33 1 44 06 97 99 PGP KeyID:3D9A43E2 FingerPrint:C40A772533730E39330DC0985EE8FF5F3D9A43E2 - : send the line "unsubscribe linux-net" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
