From mboxrd@z Thu Jan  1 00:00:00 1970
From: Stef Coene <stef.coene@docum.org>
Date: Fri, 02 May 2003 17:05:32 +0000
Subject: Re: [LARTC] layer-7 filtering is possible in linux ?
Message-Id: <marc-lartc-105189586511043@msgid-missing>
List-Id: <lartc.vger.kernel.org>
References: <marc-lartc-105189230406660@msgid-missing>
In-Reply-To: <marc-lartc-105189230406660@msgid-missing>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: lartc@vger.kernel.org

On Friday 02 May 2003 17:58, openings wrote:
> Dear folks
>
>
> With U32 filter, I can filter packets with it's packet header.
>
> In linux, I wonder if Layer-7 filtering is possible.
>
> I want to filter packets that include specific pattern in it's payload(not
> header, data part).
>
> ex) Packets that include "aaa.exe" text pattern in it's data part.
>
> If it is possible, mail traffic that include specific text pattern can be
> filtered.
>
> I thought that above function is very useful.
>
> In Linux, is it possible?
Iptables can filter based on text in a packet.  At the same time, you can mark 
the packet and that mark can be used with the fw filter.

Stef


-- 

stef.coene@docum.org
 "Using Linux as bandwidth manager"
     http://www.docum.org/
     #lartc @ irc.oftc.net

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/