* Creation of a custom netfilter/iptables target module
@ 2013-10-07 23:35 Steve (Telsat Broadband)
2013-10-08 8:02 ` Pablo Neira Ayuso
0 siblings, 1 reply; 2+ messages in thread
From: Steve (Telsat Broadband) @ 2013-10-07 23:35 UTC (permalink / raw)
To: netfilter-devel
Hi All,
I'm seeking the wisdom of the netfilter gurus to get me going in the right
direction.
Currently, we have a gateway in which several iptables/ip6tables rules send
information to the LOG target which a custom perl script then reads to
perform some processing on the sender's MAC and IP.
What I'm wanting to do is relieve load on the system by cutting out the step
of logging to syslog and sending straight to the processing program either
via a socket or some other means. I don't need to store any of the
information in the packet, only pass the MAC and IP (v4 or v6) to the
processing program.
Reading through the PDF by Jan
(http://inai.de/documents/Netfilter_Modules.pdf) and this site
(http://pudhumaijude.blogspot.com/2011/01/mini-howto-write-your-own-iptables
.html), I've been trying to make a modified version of the LOG target, but
the part I'm not quite understanding is which method in the module actually
performs the 'work'; the part of the module that actually receives the
package and performs the processing on it.
If anyone can give me some pointers, this would be very much appreciated.
Cheers.
Steve.
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: Creation of a custom netfilter/iptables target module
2013-10-07 23:35 Creation of a custom netfilter/iptables target module Steve (Telsat Broadband)
@ 2013-10-08 8:02 ` Pablo Neira Ayuso
0 siblings, 0 replies; 2+ messages in thread
From: Pablo Neira Ayuso @ 2013-10-08 8:02 UTC (permalink / raw)
To: Steve (Telsat Broadband); +Cc: netfilter-devel
On Tue, Oct 08, 2013 at 10:35:10AM +1100, Steve (Telsat Broadband) wrote:
> Hi All,
>
> I'm seeking the wisdom of the netfilter gurus to get me going in the right
> direction.
>
> Currently, we have a gateway in which several iptables/ip6tables rules send
> information to the LOG target which a custom perl script then reads to
> perform some processing on the sender's MAC and IP.
>
> What I'm wanting to do is relieve load on the system by cutting out the step
> of logging to syslog and sending straight to the processing program either
> via a socket or some other means. I don't need to store any of the
> information in the packet, only pass the MAC and IP (v4 or v6) to the
> processing program.
Did you consider ulogd2?
Regards.
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2013-10-08 8:02 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2013-10-07 23:35 Creation of a custom netfilter/iptables target module Steve (Telsat Broadband)
2013-10-08 8:02 ` Pablo Neira Ayuso
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).