On 6/4/2016 10:39 AM, Filippo Carletti wrote: > I know Tom made an exception including ipp2p support in shorewall, but > I'd like to have ndpi-netfilter. > The iptables syntax is really similar, I think I could add code to > support ndpi-netfilter and send a patch. > If there's no hope to have it accepted, how could I use ndpi in rules > and mangle? > I think I could add a custom action, but before going down this route, > I'd like to have more opinions. > Thank you. >
You can use it today. Example in /etc/shorewall/rules:
DROP loc net ;; -m ndpi --skype
Do you think that we need more? If you do, create a patch and I'll
accept it.
-Tom
--
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic patterns at an interface-level. Reveals which users, apps, and protocols are consuming the most bandwidth. Provides multi-vendor support for NetFlow, J-Flow, sFlow and other flows. Make informed decisions using capacity planning reports. https://ad.doubleclick.net/ddm/clk/305295220;132659582;e
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
