From owner-freebsd-net@FreeBSD.ORG  Fri Apr 21 05:44:17 2006
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
X-Original-To: freebsd-net@freebsd.org
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 8F8DC16A400
	for <freebsd-net@freebsd.org>; Fri, 21 Apr 2006 05:44:17 +0000 (UTC)
	(envelope-from amit.freebsd@gmail.com)
Received: from pproxy.gmail.com (pproxy.gmail.com [64.233.166.181])
	by mx1.FreeBSD.org (Postfix) with ESMTP id E071D43D46
	for <freebsd-net@freebsd.org>; Fri, 21 Apr 2006 05:44:16 +0000 (GMT)
	(envelope-from amit.freebsd@gmail.com)
Received: by pproxy.gmail.com with SMTP id t32so359005pyc
	for <freebsd-net@freebsd.org>; Thu, 20 Apr 2006 22:44:16 -0700 (PDT)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com;
	h=received:message-id:date:from:to:subject:mime-version:content-type;
	b=h5wZ/RHyNKNozgm7vpgRKQUrqoBfLNjVR6gd/6aDMw298IHV/Ez7Bn3XEI4vLXjs8qnFgAca8x8WW8AKJG4pKx/NEuEEPZXrQQcyreHdARNZs/ecKE19nYOdbrs1KD7F94Xw5TZrM6KZBaeUbUkOx9lKyrsTxoymNdJwVVivQEQ=
Received: by 10.35.87.8 with SMTP id p8mr2069213pyl;
	Thu, 20 Apr 2006 22:44:16 -0700 (PDT)
Received: by 10.35.122.10 with HTTP; Thu, 20 Apr 2006 22:44:16 -0700 (PDT)
Message-ID: <a6cf19a10604202244q40dd981dq66b56f435ee245c8@mail.gmail.com>
Date: Fri, 21 Apr 2006 00:44:16 -0500
From: "Amit Mondal" <amit.freebsd@gmail.com>
To: freebsd-net@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Subject: freeBSD /ipfw/ divert socket
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 21 Apr 2006 05:44:17 -0000

Hi All,

I need a little help with FreeBSD Kernel stuff. I wanna use Divert Socket t=
o
sniff IP packet in FreeBSD.
For that I have compiled the kernel with options IPDIVERT and everything is
ok.

Now, when I am not really sniffing and re-injecting the packet back to the
network stack, it is basically dropping all the packets. But I want it
pass-through it, when no application is reading at divert socket. My
question is, HOW CAN I MAKE IT PASS-THROUGH? IF NO APPLICATION IS READING
FROM DIVERT SOCKET, IT SHOULD WORK AS IF THERE IS NO DIVERT SOCKET.

Thanks in adavnce

Rgds
Amit




On 4/6/06, Amit Mondal <amit.freebsd@gmail.com> wrote:
>
> Hi All,
> I am a newbie to freeBSD. I am trying to modify freeBSD tcp for some
> security ehancement. Could anyone pls point me to how/where to start or a=
ny
> suitable material/tutorial to start with.
>
> Thanks in advance
> Amit
>