netfilter capturing in promisc mode

netfilter-devel.vger.kernel.org archive mirror
 help / color / mirror / Atom feed

From: topi <topi23@gmail.com>
To: netfilter-devel@lists.netfilter.org
Subject: netfilter capturing in promisc mode
Date: Mon, 26 Feb 2007 15:42:27 +0100	[thread overview]
Message-ID: <20070226154227.7d943e09@neser.elpiset.net> (raw)

hello,

i'm programming a netfilter-based module to gather statistics for RTP
flows in a network, although this can be done in user space i'm
planning to get the module doing a 'distributed' firewalling based on
external information (from VoIP infrastructure)  

i thought that setting the device to promiscuous mode will let me to
capture in the netfilter hook every packet (not only those destined to
the host), but i'm not getting packets into the hook except if they are
directed to it.

i've seen that there's a 'promisc' patch (for Linux 2.4) at:

 http://caia.swin.edu.au/cv/szander/netfilter.html

but i'm not sure if this feature is available for netfilter in
Linux 2.6, can you point me on this?

i need to get this working as fast as possible, so i need to know if
what i'm asking is feasible.

after that, i will start rethinking my architecture so i'm guessing
it's possible to do everything in user space using conntrack and
netlink sockets (i'm not sure about what will be needed)

my future work will be directed to get a VoIP monitoring tool for
linux-based routers (if i can it will be in user space, otherwise a
mixed kernel/user space)

thanks in advance for your help,

topi

                 reply	other threads:[~2007-02-26 14:42 UTC|newest]

Thread overview: [no followups] expand[flat|nested]  mbox.gz  Atom feed

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20070226154227.7d943e09@neser.elpiset.net \
    --to=topi23@gmail.com \
    --cc=netfilter-devel@lists.netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).