Re: layer7 filtering
From: Phil Regnauld (regnauld_at_catpipe.net)
Date: 06/27/05
- Previous message: Donatas: "layer7 filtering"
- In reply to: Donatas: "layer7 filtering"
- Next in thread: Donatas: "Re: layer7 filtering"
- Reply: Donatas: "Re: layer7 filtering"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Mon, 27 Jun 2005 09:19:30 +0200 To: Donatas <donatas@lrtc.net>
Donatas (donatas) writes:
> I wonder if there's any person who did some scripting like
> application layer analysis with network sniffer (like tcpdump) + apropriate firewall rule generation(like statefull ipfw rules) ?
You mean this ?
http://www.hsc.fr/ressources/outils/nstreams/
Nstreams is a program which analyzes the streams that occur on a
network. It displays which streams are generated by the users between
several networks, and between the networks and the outside. It can
optionally generate the ipchains or ipfw rules that will match these
streams, thus only allowing what is required for the users, and nothing
more.
Nstreams can parse the tcpdump output, or the files generated
with the -w option of tcpdump. It can also directly sniff
the data that occurs on the network.
This product was designed by HSC and coded by Renaud Deraison
(deraison@cvs.nessus.org), author of the Nessus software.
It is available for free under GNU license.
_______________________________________________
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
- Previous message: Donatas: "layer7 filtering"
- In reply to: Donatas: "layer7 filtering"
- Next in thread: Donatas: "Re: layer7 filtering"
- Reply: Donatas: "Re: layer7 filtering"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
|
