On Monday 2009-01-19 21:11, Simon Labrecque wrote: > > I would like to have a specific connection act like an "authentication" >service; that is, when a connection to a specific port is made and once the >required data has passed between the 2 hosts, the client is now >authenticated, permitting access to other network services which are flagged >with the RELATED state (and not the NEW one). "RELATED" is for protocol-related connections and, I think, it should not be abused to denote "AUTHENTICATED". > Is this possible? It seems it was possible a while ago (while >exp->mask.dst was still present), but this was removed and I don't see how I >can achieve the same functionality with the current structures. Am I missing >something? A userspace daemon can augment the ruleset after authentication, either by calling iptables(8), or iptables-restore/save. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
