On Fri, May 21, 2010 at 05:17:20PM +0700, Hari Hendaryanto wrote: > > wow, hebat pak arif, ada kemungkinankah aplikasi ULTRASURF ini punya > signature/footprint yg bisa di trap sama iptables layer7?
Kalau signaturenya tidak mengandung karakter null bisa diblok Pak. Karena ada keterbatasan di layer7 untuk ini: "Both versions of l7-filter strip out the nulls (\x00 bytes) from network data so that they can treat it as normal C strings. So (1) you can't match on nulls and (2) fields may appear shorter than expected. For example, if a protocol has a 4 byte field and any of those bytes can be null, it can appear to be any length from 0 to 4." Ref: http://l7-filter.sourceforge.net/Pattern-HOWTO -- Arief Yudhawarman http://awarmanf.wordpress.com -- FAQ milis di http://wiki.linux.or.id/FAQ_milis_tanya-jawab Unsubscribe: kirim email ke tanya-jawab-unsubscr...@linux.or.id Arsip dan info milis selengkapnya di http://linux.or.id/milis
