>> > I found netfilter in kernel 2.6 doesnt support packet >> > string-matching.How do i make it works in kernel 2.6? >> >> I think it suffers the same problem with the ipt_random patch, >> so you could just create a patch yourself by duplicating what's >> in the 2.4 patch and change the info file accordingly. >> > >You could also use this patch instead :- >https://lists.netfilter.org/pipermail/netfilter-devel/2004-December/017892.html [ipt_string] If neither works, you can try abusing ipt_layer7 ;-) See http://l7-filter.sf.net/ Jan Engelhardt --
