Hi, I' currently looking at the kernel part of the code (for fun ;) ) and am looking a ebtables. I am thinking at writing a module to send packets to userspace, using NFQUEUE. This has previously been asked [1] and Patrick answered there could be problems, but if it makes some sense I'd like to try anyway This would allow to queue packets to userspace, not only IP packet but any protocol. I think this would also send the raw (not reassembled) packets, which makes some sense for IDS like Suricata. I've looked at the net/bridge code for core functions and modules, this does not look impossible, though I must admit I'm not familiar with the code at all and not understanding it entirely for the moment .. I've looked at the ebt_NFLOG module and the netfilter NFQUEUE code to understand how to implement it Basically, I've started looking at the code and implementing a few functions, but before going into deep modifications or problems, I'd like to ask if that sounds like a good idea at all ? If yes, I'll probably have lots of questions (including beginners), is there someone I can ask directly, or should I send them to the -devel list ? Thanks, Pierre [1] http://www.spinics.net/lists/netfilter-devel/msg15730.html -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
