On Mon, 22 Jan 2001, Scaramanga wrote:
> Under Linux 2.2.x I used to be able to use ipchains to send packet to a
> netlink socket so that my userspace application could further analyze
> the packet data.
>
> Since kernel 2.4 and iptables, I have not enjoyed the same functionality,
> has it been deprecated in favour of a better method, if so, what? I ask
> because I just spent my last few hours writing an iptables plugin, and
> netfilter target kernel module, in order to replace the old functionality
> exactly, to the end that my application works with zero modifications.
You might take a look at
$ man iptables
...
TARGETS
...
QUEUE means to pass the packet to userspace (if supported by the kernel).
$ sed -n -e '1874,1876p' /usr/src/linux-2.4.0/Documentation/Configure.help
CONFIG_IP_NF_QUEUE
Netfilter has the ability to queue packets to user space: the
netlink device can be used to access them using this driver.
$ lynx /usr/share/doc/iptables/html/packet-filtering-HOWTO-7.html
BYtE
Philipp
-- / / (_)__ __ ____ __ Philipp Hahn / /__/ / _ \/ // /\ \/ / /____/_/_//_/\_,_/ /_/\_\ pmhahn@titan.lahn.de- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Tue Jan 23 2001 - 21:00:25 EST