On 1/18/06, Bill Marquette <[EMAIL PROTECTED]> wrote:
> Or because IPFW on FreeBSD has divert() and IP Tables in Linux has
> netlink. It's a logical question to ask - although a few minutes in
> the man page and a few hours groking the PF source would have been
> enough.
I don't say this to be ar
On 1/18/06, Travis H. <[EMAIL PROTECTED]> wrote:
> You get a packet into pf by sending the packet.
>
> There is no easy way to "resume processing". Once it has been sent to
> userland, processing is over. There's nothing to resume.
>
> If you're asking about this, you're probably out of your dept
On 1/17/06, Bill Marquette <[EMAIL PROTECTED]> wrote:
> On 1/17/06, Edmond Dantes <[EMAIL PROTECTED]> wrote:
> > I would like to do some content analysis on packets from a user space
> > process,
> > something like a L7 filter. rdr seems the way to go, but I cannot understand
> > how to get the pa
On 1/17/06, Edmond Dantes <[EMAIL PROTECTED]> wrote:
> I would like to do some content analysis on packets from a user space process,
> something like a L7 filter. rdr seems the way to go, but I cannot understand
> how to get the packets back into pf so it can continue with the rules and
> maintain
You get a packet into pf by sending the packet.
There is no easy way to "resume processing". Once it has been sent to
userland, processing is over. There's nothing to resume.
If you're asking about this, you're probably out of your depth.
You might wish to look at the ftp proxy to see how that
I would like to do some content analysis on packets from a user space process,
something like a L7 filter. rdr seems the way to go, but I cannot understand
how to get the packets back into pf so it can continue with the rules and
maintain state info.
Suggestions?
TIA
/ED
