On Friday 25 Jul 2008, PJ wrote:
Raj Mathur [EMAIL PROTECTED] writes:
How can I set up apache or iptables to log in incoming data
packets while at the same time allow apache to serve web pages?
You can't.
I'm wondering why iptables logging and dropping packets from the
particular src wouldn't work.
I'm probably missing something basic here...
OK, let me rephrase -- even if you can have packets for two different
applications arriving on the same TCP port, actually doing so would be
going against one of the basic design tenets of IP (the unique
address/protocol/port identifier).
I'd strongly recommend against such a setup. Apart from being totally
incomprehensible to anyone else (or even to yourself 6 months after you
set it up), it'll be impossible to replicate properly, and extremely
fragile -- you don't write applications that break when a client
upgrade changes the value of one bit in a packet somewhere.
All in all, a horribly dirty hack which I personally wouldn't touch with
a 20-metre barge pole.
Regards,
-- Raju
--
Raj Mathur[EMAIL PROTECTED] http://kandalaya.org/
GPG: 78D4 FC67 367F 40E2 0DD5 0FEF C968 D0EF CC68 D17F
PsyTrance Chill: http://schizoid.in/ || It is the mind that moves
___
ilugd mailinglist -- ilugd@lists.linux-delhi.org
http://frodo.hserus.net/mailman/listinfo/ilugd
Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi
http://www.mail-archive.com/ilugd@lists.linux-delhi.org/