All of lore.kernel.org
 help / color / mirror / Atom feed
* Netfilter ContextID
@ 2005-10-04 18:26 Jerry Alexander
  2005-10-10 13:04 ` Amin Azez
  0 siblings, 1 reply; 2+ messages in thread
From: Jerry Alexander @ 2005-10-04 18:26 UTC (permalink / raw)
  To: netfilter-devel

Dear Netfilter-devel:

     Working on implementing packetswitching.
     Of course  Iptables/Netfilter looks like the
correct medium to do so.
     Loaded things up and  iptables could
Add(append), subtract(delete) and move(replace) UDP/IP
connections.
     Wrote a base module using nf_register_hook at PREROUTING
to gather packet stats.
     My problem is this.  My manager wants a "ContextId"
generated during the a  add,subtract,move commands.  Of
course this would have to be unique(using a hashing algorithm
which uses the IP address and the Port Number).
     Right now this looks like it would need to be generated in the
kernel module.   But this would require all the Append/delete/Replace
command functions moved to the kernel function also!!
     Hoping someone can point me in the right direction on how
this would be done using Iptables and Netfilter.

                                  Thanks,
                                         Jerry

^ permalink raw reply	[flat|nested] 2+ messages in thread
* Re: Netfilter ContextID
  2005-10-04 18:26 Netfilter ContextID Jerry Alexander
@ 2005-10-10 13:04 ` Amin Azez
  0 siblings, 0 replies; 2+ messages in thread
From: Amin Azez @ 2005-10-10 13:04 UTC (permalink / raw)
  To: netfilter-devel

What is the purpose of this contextid?

If iptables itself is not going to make use of it, why not re-calculate
it on demand when you read rules back using iptables -L?

Or if you need to be able to store abritrary cookie values, there is a
comment module for iptables which allows you to store up to 255 bytes of
text.

How to do this really depends on the purpose of this context and what
else is supposed to respond to it.

Sam

Jerry Alexander wrote:
> Dear Netfilter-devel:
> 
>     Working on implementing packetswitching.
>     Of course  Iptables/Netfilter looks like the
> correct medium to do so.
>     Loaded things up and  iptables could
> Add(append), subtract(delete) and move(replace) UDP/IP
> connections.
>     Wrote a base module using nf_register_hook at PREROUTING
> to gather packet stats.
>     My problem is this.  My manager wants a "ContextId"
> generated during the a  add,subtract,move commands.  Of
> course this would have to be unique(using a hashing algorithm
> which uses the IP address and the Port Number).
>     Right now this looks like it would need to be generated in the
> kernel module.   But this would require all the Append/delete/Replace
> command functions moved to the kernel function also!!
>     Hoping someone can point me in the right direction on how
> this would be done using Iptables and Netfilter.
> 
>                                  Thanks,
>                                         Jerry
> 
> 
> 

^ permalink raw reply	[flat|nested] 2+ messages in thread
end of thread, other threads:[~2005-10-10 13:04 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2005-10-04 18:26 Netfilter ContextID Jerry Alexander
2005-10-10 13:04 ` Amin Azez

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.