Application Layer Packet Classifier for Linux

| | Comments (1)

Application Layer Packet Classifier for Linux is a classifier for the Linux kernel's Netfilter subsystem
that identifies packets based on application layer data (OSI layer 7).

Installation instruction
1. Patch kernel (both 2.4 and 2.6 are support), build new kernel
2. Patch iptables, build new iptables, cp extensions/libipt_layer7.so /usr/local/lib/iptables

iptables command example:
iptables -A FORWARD -m layer7 --l7proto msnmessenger -j DROP

I test Skype pattern, not work.
I wrote a softether pattern (for 1.0 or 2.0) as follow.
# SoftEther http://www.softether.com
#
# Pattern quality: marginal
#
# By Henry Pan
#
# SoftEther 1.0 ^802f0103010006000000200000040100
# SoftEther 2.0 certification.*softether vpn server
#
softether
^\x80\x2f\x01\x03\x01\x00\x06\x00\x00\x00|certification.*softether vpn server

1 Comments

L7-filter也是一套可以管理OSI layer 7的工具,雖然還沒試過感覺還不錯。
L7-filter 安裝實錄
http://cha.homeip.net/blog/archives/2005/12/l7filter.html

Leave a comment

March 2009

Sun Mon Tue Wed Thu Fri Sat
1 2 3 4 5 6 7
8 9 10 11 12 13 14
15 16 17 18 19 20 21
22 23 24 25 26 27 28
29 30 31        

About this Entry

This page contains a single entry by Pank published on February 24, 2005 12:15 AM.

潘氏淵源 was the previous entry in this blog.

sftp speed is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.