freeBSD /ipfw/ divert socket
ShouYan Mao
symao at juniper.net
Fri Apr 21 05:48:31 UTC 2006
No, if no application is reading from divert socket, kernel will drop it!
A divert socket is like a hole in the net system.
Best Regards
Shouyan
-----Original Message-----
From: owner-freebsd-net at freebsd.org [mailto:owner-freebsd-net at freebsd.org] On Behalf Of Amit Mondal
Sent: 2006年4月21日 13:44
To: freebsd-net at freebsd.org
Subject: freeBSD /ipfw/ divert socket
Hi All,
I need a little help with FreeBSD Kernel stuff. I wanna use Divert Socket to
sniff IP packet in FreeBSD.
For that I have compiled the kernel with options IPDIVERT and everything is
ok.
Now, when I am not really sniffing and re-injecting the packet back to the
network stack, it is basically dropping all the packets. But I want it
pass-through it, when no application is reading at divert socket. My
question is, HOW CAN I MAKE IT PASS-THROUGH? IF NO APPLICATION IS READING
FROM DIVERT SOCKET, IT SHOULD WORK AS IF THERE IS NO DIVERT SOCKET.
Thanks in adavnce
Rgds
Amit
On 4/6/06, Amit Mondal <amit.freebsd at gmail.com> wrote:
>
> Hi All,
> I am a newbie to freeBSD. I am trying to modify freeBSD tcp for some
> security ehancement. Could anyone pls point me to how/where to start or any
> suitable material/tutorial to start with.
>
> Thanks in advance
> Amit
>
_______________________________________________
freebsd-net at freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscribe at freebsd.org"
More information about the freebsd-net
mailing list