I wrote a module to track the udp dns query. It is not working, what
could be the problem ?
#include <linux/module.h>
#include <linux/kernel.h>
#include <net/netfilter/nf_conntrack.h>
#include <net/netfilter/nf_conntrack_helper.h>
#include <linux/ip.h>
#include <net/netfilter/nf_conntrack_expect.h>
MODULE_LICENSE("GPL");
static const struct nf_conntrack_expect_policy my_expect_policy = {
.max_expected = 1,
};
static int foo_help(struct sk_buff *skb,
unsigned int protoff,
struct nf_conn *ct,
enum ip_conntrack_info conntrackinfo)
{
printk (KERN_ALERT "A dns query is sent out \n");
return NF_ACCEPT;
}
static struct nf_conntrack_helper foo;
int init_conntrack_module(void)
{
int ret = -1;
memset(&foo, 0, sizeof(struct nf_conntrack_helper));
foo.name = "foo";
foo.me = THIS_MODULE;
foo.tuple.dst.protonum = IPPROTO_UDP;
foo.tuple.dst.u.udp.port = htons(53);
foo.help = foo_help;
foo.expect_policy = &my_expect_policy;
ret = nf_conntrack_helper_register(&foo);
printk ("Registration ret = %d\n", ret);
return ret;
}
void fini_conntrack_module(void)
{
nf_conntrack_helper_unregister(&foo);
}
module_init(init_conntrack_module);
module_exit(fini_conntrack_module);
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
