Hi Jim,
As the limitation really is in the kernel, and all your approaches turn
out not to work as you expect you might want to consider other
possibilities. E.g. it might be fairly easy to do something like you
suggested via either in kernel firewalling solution (although i am not
sure if th
On Oct 7, 2008, at 1:07 PM, Jim Mellander wrote:
All of the above are attempts to overcome the 'one filter per
interface
per process' model that I believe libpcap imposes
So why does it need overcoming? A filter says "only deliver me
packets that match the following"; would multiple pack
On Oct 7, 2008, at 1:07 PM, Jim Mellander wrote:
All of the above are attempts to overcome the 'one filter per
interface
per process' model that I believe libpcap imposes - or am I wrong? Is
there something I've overlooked?
Depends on what you mean by "imposes".
If you want to do filterin
Hi:
I've working on a TCP connection-killer daemon that will receive
requests of the following type:
'kill all connections between host x & host y'
and craft response packets based on received packets.
Of course, it will have a mechanism for removing such requests from its
active list.
There a
