From owner-freebsd-hackers@FreeBSD.ORG Mon Jun 27 14:06:54 2005 Return-Path: X-Original-To: freebsd-hackers@freebsd.org Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A4BD016A41C for ; Mon, 27 Jun 2005 14:06:54 +0000 (GMT) (envelope-from cole@opteqint.net) Received: from kalypso.opteqint.net (kalypso.opteqint.net [160.124.112.28]) by mx1.FreeBSD.org (Postfix) with ESMTP id DF30943D53 for ; Mon, 27 Jun 2005 14:06:53 +0000 (GMT) (envelope-from cole@opteqint.net) Received: from localhost.opteqint.net ([127.0.0.1] helo=opteqint.net) by kalypso.opteqint.net with esmtp (Exim 4.43 (FreeBSD)) id 1DmuFv-0008QN-JD for freebsd-hackers@freebsd.org; Mon, 27 Jun 2005 16:06:46 +0200 Received: from tbnb-165-211-233.telkomadsl.co.za (tbnb-165-211-233.telkomadsl.co.za [165.165.211.233]) by mail.opteqint.net (Horde) with HTTP for ; Mon, 27 Jun 2005 16:06:35 +0200 Message-ID: <20050627160635.9kkhi57rk88w848k@mail.opteqint.net> Date: Mon, 27 Jun 2005 16:06:35 +0200 From: cole@opteqint.net To: freebsd-hackers@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 7bit User-Agent: Internet Messaging Program (IMP) H3 (4.0.1) / FreeBSD-5.2.1 X-Spam-Score: -99.8 (---------------------------------------------------) X-Spam-Report: Spam detection software, running on the system "kalypso.opteqint.net", has identified this incoming email as possible spam. The original message has been attached to this so you can view it (if it isn't spam) or label similar future email. If you have any questions, see the administrator of that system for details. Content preview: Hi I wanted to know if there are any libraries similar to pcap to intercept packets/mangle packets. What im trying to do specifically is like link compression, and I would then need to check if the packet is then compressed and decompress, and so forth and so on. [...] Content analysis details: (-99.8 points, 4.2 required) pts rule name description ---- ---------------------- -------------------------------------------------- -100 USER_IN_WHITELIST From: address is in the user's white-list 0.2 NO_REAL_NAME From: does not include a real name Subject: Packet interception / Mangling X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 27 Jun 2005 14:06:54 -0000 Hi I wanted to know if there are any libraries similar to pcap to intercept packets/mangle packets. What im trying to do specifically is like link compression, and I would then need to check if the packet is then compressed and decompress, and so forth and so on. I would like to avoid having to use a ipfw divert to a port, and specifically check all traffic to the box using a library function or some kind of hook into the kernel. The FreeBSD version I will be using is 4.9 or 4.11, and would like to know if there are any such routines available, and whether it could be a userland daemon, or if i am going to need to write a kernel loadable module? If anyone has any ideas or suggestions, or knows anything about this, it would be a great help. Regards /Cole