Date: Fri, 20 Feb 2004 13:48:18 +0100 From: Christophe Prevotaux <c.prevotaux@hexanet.fr> To: Bruce M Simpson <bms@spc.org> Cc: freebsd-security@freebsd.org Subject: Re: traffic normalizer for ipfw? Message-ID: <20040220134818.4f5c99a9.c.prevotaux@hexanet.fr> In-Reply-To: <20040219211411.GB3612@saboteur.dek.spc.org> References: <20040219210216.22863.qmail@web12608.mail.yahoo.com> <20040219211411.GB3612@saboteur.dek.spc.org>
next in thread | previous in thread | raw e-mail | index | archive | help
What about making protocol syntax and grammar dictionnary based filtering ?=20 In the way you could recognize any protocol on any port=20 and filter by many keys looking into protocol up to the highest levels. Of course this requires analysis of many protocols and writing of many dictionaries. But at least one company made this : http://www.qosmos.fr On Thu, 19 Feb 2004 21:14:11 +0000 Bruce M Simpson <bms@spc.org> wrote: > On Thu, Feb 19, 2004 at 01:02:16PM -0800, Dorin H wrote: > > Is there some way to configure ipfw to do traffic > > normalizing ("scrubbing", as in ipf for OpenBSD)? Is > > there any tool to do it for FreeBSD firewalling?=20 > > I've heard that ipf was ported on current, anything > > else? >=20 > We're looking at bringing pf into the tree. One of the things on my > unofficial(some would say a work of pure fiction) is to look at > something for KaZaA filtering on BSD... >=20 > If you're talking about traffic shaping, have a look at dummynet which > is already there. >=20 > BMS > _______________________________________________ > freebsd-security@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to > "freebsd-security-unsubscribe@freebsd.org" >=20 -- =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D Christophe Prevotaux Email: c.prevotaux@hexanet.fr HEXANET SARL URL: http://www.hexanet.fr/ Z.A.C Les Charmilles Tel: +33 (0)3 26 79 30 05=20 3 All=E9e Thierry Sabine Direct: +33 (0)3 26 61 77 72=20 BP202 Fax: +33 (0)3 26 79 30 06 51686 Reims Cedex 2 =20 FRANCE HEXANET Network Operation Center =20 =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040220134818.4f5c99a9.c.prevotaux>