>> > If neither works, you can try abusing ipt_layer7 ;-) >> > See http://l7-filter.sf.net/ > >I had a quick look at the source of ipt_layer7, it's linearising >the skb so that the pattern can be matched. For ipp2p, it simply A right, yes, it linearizes, but only for the first 2048 bytes (the default buffer size). But anyway, what if in these first 2048 bytes two rules would match? You'd anyway get nonpredictable results. Jan Engelhardt --
