Re: bpf packet capture and SOCK_STREAM socket redirects...

On Fri, Mar 21, 2008 at 6:35 AM, Peter Jeremy
<peterjeremy@xxxxxxxxxxxxxxxx> wrote:
On Thu, Mar 20, 2008 at 11:27:53AM +0000, Alireza Torabi wrote:
>Imagine this:
>
> | (1)
> packets
> | | (4)
> [nic1] [nic2]
> bpf SOCK_STREAM
> | (2) |
> [FreeBSD] (3)
>
>1) all user traffic are being monitored
>2) bpf on [nic] is capturing these packets
>3) after processing we know a connection is about to be established from A to B
>
>NOW:
>4) I want to deliver this packet to the socket on [nic2]
>and as this is a tcp socket it'll take care of it from there
>(my code here for this sockets sends and arbitary data to A making it
>think it came from B)

Have a look at divert(4). I suspect it comes closest to what you want.

--
Peter Jeremy
Please excuse any delays as the result of my ISP's inability to implement
an MTA that is either RFC2821-compliant or matches their claimed behaviour.


Yes. It sounds promising. I was reading natd and planning to read ipfw
source interestingly!
Thanks

Alireza
_______________________________________________
freebsd-net@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscribe@xxxxxxxxxxx"

Relevant Pages

  • Re: bpf packet capture and SOCK_STREAM socket redirects...
    ... bpf on is capturing these packets ... after processing we know a connection is about to be established from A to B ... I want to deliver this packet to the socket on ...
    (freebsd-net)
  • Re: verrevpath failure from within my own box
    ... On Sat, 2005-11-12 at 14:47 +1100, Peter Jeremy wrote: ... there are some packets that were denied. ... where 24.199.45.54 is the ip address of dc0. ... To unsubscribe, ...
    (freebsd-current)
  • Re: verrevpath failure from within my own box
    ... there are some packets that were denied. ... not behaving as expected. ... Peter Jeremy ... To unsubscribe, ...
    (freebsd-current)
  • Re: Problem with writing fast UDP server
    ... UDP packets per second. ... socket and threads. ... I wrote a simple case test: client and server. ... The maximum theoretical limit is 14,880 frames per ...
    (comp.lang.python)
  • RE: *warning* student question
    ... What option is this supposed CRC or hash supposed to be? ... >their shell session you're taking over their network socket. ... Systems will also drop TCP packets with bad checksums. ... We provide Ethical Hacking, Advanced Ethical Hacking, Intrusion ...
    (Security-Basics)