From mboxrd@z Thu Jan 1 00:00:00 1970 From: Kevin McConnell Subject: Re: Layer-7 HTTP Matching Module Date: Fri, 7 Feb 2003 11:23:43 -0800 (PST) Sender: netfilter-devel-admin@lists.netfilter.org Message-ID: <20030207192343.85533.qmail@web40309.mail.yahoo.com> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Return-path: To: Kirk Bauer , netfilter-devel@lists.netfilter.org In-Reply-To: Errors-To: netfilter-devel-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Unsubscribe: , List-Archive: List-Id: netfilter-devel.vger.kernel.org --- Kirk Bauer wrote: > I think I could do this with the 'string' module of > iptables -- i.e. > look for the string "Content-type: text/html" and > set a TOS flag or a > firewall mark. The 'tc' command can then be used to > give these packets > higher priority. > > But I think it might be nice to have a true layer 7 > matching module. > You could do: > > -m --content-type 'text/html' --host > 'www.mydomain.com' > > It seems that if the string matching module is > possible, then this is > also possible. I'm sure anything's possible if you can imagine it. > > Does such a module exist or is it being developed? > If not, I may write > one when I have time if other people think it would > be useful. I don't see one being developed at this time, but I think it would be useful. > Kirk Bauer > http://linux.kaybee.org | www.autorpm.org | > www.logwatch.org btw, thanks for so many years of use of both of these great tools. ===== Kevin C. McConnell --RHCE-- __________________________________________________ Do you Yahoo!? Yahoo! Mail Plus - Powerful. Affordable. Sign up now. http://mailplus.yahoo.com