OoO En cette aube naissante du dimanche 31 mai 2009, vers 07:56, Michael Mefford <meffordm@xxxxxxxxx> disait : > I need to know how to interact with the netfilter queue. My project > needs to capture TCP packets from the queue, process them in > userspace, and then re-insert them back into the firewall to forwarded > on. However, I can't find any recent documentation that explains how > to do this. The most I can find is about 3 years old (and seemingly > out of date). Does anyone have good working knowledge that might help > me understand this? You have a basic example in the sources: https://git.netfilter.org/cgi-bin/gitweb.cgi?p=libnetfilter_queue.git;a=blob;f=utils/nfqnl_test.c;hb=HEAD I have a pet project using Netfilter queue if you want another example: http://cgit.luffy.cx/udpproxy/tree/src/proxy.c There is also nufw and mxallowd that uses netfilter queue. To modify a packet, just modify your received copy (or another copy) and use the two last arguments of nf_queue_set_verdict to be the size and a pointer to your copy. Otherwise, set them to 0 and NULL. -- #ifdef STUPIDLY_TRUST_BROKEN_PCMD_ENA_BIT 2.4.0-test2 /usr/src/linux/drivers/ide/cmd640.c -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
