Date: Wed, 11 Mar 2015 16:27:16 +0100 From: =?KOI8-R?B?SWdvciAnTG8nICjpLkwuKQ==?= <bombsiteunrested@gmail.com> To: freebsd-net@freebsd.org Subject: Netmap/divert socket capture: getting ipfw state? [porting from Linux, need NFLOG/NFQUEUE/ct functionality] Message-ID: <CAMZz3NMYzWUnB8JoaRATKunoo2gpdgKE-fbG9cRgjQRmHcwa9Q@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
Hello, I currently plan to port one of my projects to FreeBSD from Linux, now it requires an intrusive way of packet capture (to avoid drops) and relies on a connection state tracking information from outside (e.g. Linux's conntrack)). So I need a way to capture some traffic based on predetermined ipfw(?) rules, then get the packets to userspace together with connection tracking state data from firewall. What are my options on FreeBSD? (Also, I'm fine with going down to kernel and communicating with my own userspace app with other means, as long as I don't have to add own connection tracker, but I'll prefer a pure userspace solution if possible). -- cheers, Igor
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAMZz3NMYzWUnB8JoaRATKunoo2gpdgKE-fbG9cRgjQRmHcwa9Q>