On Saturday 2013-03-16 18:25, AZ 9901 wrote: >Le 12 mars 2013 à 19:09, AZ 9901 a écrit : >> >> sslh (http://www.rutschle.net/tech/sslh.shtml) works as a protocol demultiplexer, it allows to separate SSH and HTTPS streams which arrive on the same port (443 for instance). >> I would like to do the same thing but with iptables only. >> Is it possible ? No. As the name already says, it works at the IP/Network level, not with upper protocols. >> I think that using PREROUTING, string, conntrack... it could be. >> I tried but I did not manage to make it work. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html