Hi, PCRE2 has been ported to linux kernel. https://github.com/xnsystems/kpcre You can filter packets using PCRE syntax like below. iptables -A INPUT -p tcp -m string --string "/[Hh]ello.+World [^/r/n]{20}/i" --algo pcre -j DROP I hope it helps. :) Best regards, Seongmyun Cho -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
