On 07/21/08 02:51, Jan Engelhardt wrote:
and the same tests with byte 16-19, checking for example, 0x1337 as ITT. Note that this matches one specific ITT value only. If you want to log all ITTs, then you should omit the ITT test and only test for iSCSI, and log that using your favorite method.
Is there a way to log the data extracted from the matched packet with out passing the packet to user space for logging? Or are you matching the desired packets and sending them user space for logging?
In other words is there a way to have IPTables read some contents of a packet and then LOG the contents with out passing the entire packet to user space? (To the best of my knowledge there is no way to do this.)
Grant. . . . -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html