traffic normalizer for ipfw?
Christophe Prevotaux
c.prevotaux at hexanet.fr
Fri Feb 20 04:48:20 PST 2004
What about making protocol syntax and grammar dictionnary
based filtering ?
In the way you could recognize any protocol on any port
and filter by many keys looking into protocol up to the highest
levels.
Of course this requires analysis of many protocols and writing of
many dictionaries.
But at least one company made this : http://www.qosmos.fr
On Thu, 19 Feb 2004 21:14:11 +0000
Bruce M Simpson <bms at spc.org> wrote:
> On Thu, Feb 19, 2004 at 01:02:16PM -0800, Dorin H wrote:
> > Is there some way to configure ipfw to do traffic
> > normalizing ("scrubbing", as in ipf for OpenBSD)? Is
> > there any tool to do it for FreeBSD firewalling?
> > I've heard that ipf was ported on current, anything
> > else?
>
> We're looking at bringing pf into the tree. One of the things on my
> unofficial(some would say a work of pure fiction) is to look at
> something for KaZaA filtering on BSD...
>
> If you're talking about traffic shaping, have a look at dummynet which
> is already there.
>
> BMS
> _______________________________________________
> freebsd-security at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-security
> To unsubscribe, send any mail to
> "freebsd-security-unsubscribe at freebsd.org"
>
--
===============================================================
Christophe Prevotaux Email: c.prevotaux at hexanet.fr
HEXANET SARL URL: http://www.hexanet.fr/
Z.A.C Les Charmilles Tel: +33 (0)3 26 79 30 05
3 Allée Thierry Sabine Direct: +33 (0)3 26 61 77 72
BP202 Fax: +33 (0)3 26 79 30 06
51686 Reims Cedex 2
FRANCE HEXANET Network Operation Center
===============================================================
More information about the freebsd-net
mailing list