Hello,
while I was looking for ways to move some firewalling functionality into
user space (parse packet to decide whether to drop or accept the packet
along with some reporting in the drop case), I came across iptable's
NFQUEUE target, which, along with libnetfilter_queue, seems to be a
perfect match for my use case.
However, parts of the doxygen documentation (at
https://www.netfilter.org/projects/libnetfilter_queue/doxygen/html/modules.html)
are marked deprecated (i.e. Queue handling, Library setup, Message
parsing functions, and Printing). I may have missed it while I was
searching the netfilter mailing list archives in this context, but I
could not find any hint on the reason why these parts of
libnetfilter_queue are deprecated (apart from nfq_set_verdict_mark()
being marked as deprecated) nor did I find any hint on a replacement.
Could you enlighten my here?
Thank your and best regards,
Daniel
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
