Thursday, April 10, 2003, 11:26:45 PM, you wrote: F> Just a naive question: F> using netfilter, is it possible to grab a packet and change F> its IP source address and then reinject it as if it has been F> sent from another source? Yes it is possible. You can use ip_queue - queue the packets to userspace, change whatever you want, recalculate checksum yourself and reinject it back. Tho, my tests indicate that if the link is too loaded and your code is not fast enough (sometimes even with nop) the netlink socket overflows causing packet drops. I tried tuning the netlink socket increasing the buffer size, but after some time it overflowed anyway. P.Krumins
