Date: Thu, 24 Nov 2005 11:47:21 -0200 From: Thiago Damas <tdamas@gmail.com> To: freebsd-pf@freebsd.org Subject: Re: Protocol filter capabilities Message-ID: <f8e3d83f0511240547k585dd99fh@mail.gmail.com> In-Reply-To: <f8e3d83f0511240546ud5b4a1m@mail.gmail.com> References: <MAEBLPAGHGPMOKCBICBNMENPCIAA.alexandre.delay@free.fr> <f8e3d83f0511240546ud5b4a1m@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
I have a program that implements this, via divert socket with ipfw. I think the better way to do this is with a program that listens with bfp/pcap, and inserts/deletes rules using ioctls in /dev/pf For now, I'm trying to alter a queue, given a state, using /dev/pf, but it doesnt seen easy. Altering the queue I can limit the bandwidth of a protocol; if I want to block the protocol, I can just delete the state of the firewall. Have you some ideas? 2005/11/23, Alexandre DELAY <alexandre.delay@free.fr>: > hi guys, > > I am looking for an efficient way to filter different protocols, such as > edonkey or BEEP. > For the moment, I think that pf doesn't support it. > > Don't you think that it would be a nice thing to be able to include such > "filters" from, for example, ethereal? > Ethereal support more than 34k different protocols. It woul be nice to be > able to choose from those filters and to apply some rules according to th= ose > filters. > > Do you know a way to do this? > > Cheers > > Alex > > _______________________________________________ > freebsd-pf@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-pf > To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org" >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?f8e3d83f0511240547k585dd99fh>