From: Dai MIKURUBE <dmikurube@acm.org>
To: netfilter@lists.netfilter.org
Subject: Re: Generating pseudo-packets with netfilter
Date: Tue, 19 Dec 2006 23:27:13 +0900 [thread overview]
Message-ID: <4587F6C1.3070904@acm.org> (raw)
In-Reply-To: <4587EE1F.8050203@acm.org>
Hi,
I make a supplementary explanation.
Finally, my purpose is to make "Pseudo 3-Way Handshake".
At first, a user process create a socket (with socket())
and make it TCP_LISTEN (with listen()).
Next, I'd like to make it's status CONNECTED without any
external computers for some reason. In order to do this,
it's necessary that the Linux Kernel believes a SYN packet
has come. So, of cource, to handle a SYN+ACK pakcet and to
reply an ACK packet are required.
If netfilter cannot generate packets out of nothing,
I think to take the following way:
1. My module call netif_receive_skb() directly to send a SYN packet.
2. Kernel replys a SYN+ACK packet,
and my module catches it with netfilter.
3. My module DROPs the packet,
and my module replys an ACK packet with netif_receive_skb().
But it seems to be a little hard. I'm happy if it can be done
with netfilter.
--
Dai MIKURUBE
dmikurube@acm.org
prev parent reply other threads:[~2006-12-19 14:27 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2006-12-19 13:50 Generating pseudo-packets with netfilter Dai MIKURUBE
2006-12-19 14:27 ` Dai MIKURUBE [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=4587F6C1.3070904@acm.org \
--to=dmikurube@acm.org \
--cc=netfilter@lists.netfilter.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox