'[l7-filter-developers] l7 patch not working'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       l7-filter-developers
Subject:    [l7-filter-developers] l7 patch not working
From:       Senthil Naidu <senthil.naidu () gmail ! com>
Date:       2005-11-30 14:51:04
Message-ID: 4f35c65d0511300639s69f8240j50f64297b8de8a0d () mail ! gmail ! com
[Download RAW message or body]

we r using fc3 with kernel 2.6.11 and iptables  v1.3.3 in bridge mode

my mangle table rule includes the following to block http request

iptables -t mangle -A POSTROUTING  -m layer7 --l7dir
/etc/l7-protocols/protocols/ --l7proto http -j DROP
iptables -t mangle -A FORWARD  -m layer7 --l7dir
/etc/l7-protocols/protocols/ --l7proto http -j DROP

i'm not getting any hits on the mangle rule ,  once i got the hits and
it was able to block the traffic but it stopped once i stoped the
iptables service and inserted the same rule again.

iptables -L -t mangle -v shows

Chain POSTROUTING (policy ACCEPT 7285 packets, 2172K bytes)
 pkts bytes target     prot opt in     out     source               destination
    0     0 DROP       all  --  any    any     anywhere            
anywhere            LAYER7 l7proto http

what might be the problem

regards


-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://ads.osdn.com/?ad_idv37&alloc_id865&opÌk
_______________________________________________
L7-filter-developers mailing list
L7-filter-developers@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/l7-filter-developers

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic