Skip to content

l7-filter/l7-filter-userspace

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits
AUTHORS
AUTHORS
 
 
BUGS
BUGS
 
 
COPYING
COPYING
 
 
ChangeLog
ChangeLog
 
 
INSTALL
INSTALL
 
 
Makefile.am
Makefile.am
 
 
Makefile.in
Makefile.in
 
 
NEWS
NEWS
 
 
README
README
 
 
THANKS
THANKS
 
 
TODO
TODO
 
 
aclocal.m4
aclocal.m4
 
 
autogen.sh
autogen.sh
 
 
config.guess
config.guess
 
 
config.h.in
config.h.in
 
 
config.sub
config.sub
 
 
configure
configure
 
 
configure.ac
configure.ac
 
 
depcomp
depcomp
 
 
install-sh
install-sh
 
 
l7-classify.cpp
l7-classify.cpp
 
 
l7-classify.h
l7-classify.h
 
 
l7-conntrack.cpp
l7-conntrack.cpp
 
 
l7-conntrack.h
l7-conntrack.h
 
 
l7-filter-userspace-0.10-protocols.patch
l7-filter-userspace-0.10-protocols.patch
 
 
l7-filter-userspace-0.10-quiet.patch
l7-filter-userspace-0.10-quiet.patch
 
 
l7-filter-userspace.spec.in
l7-filter-userspace.spec.in
 
 
l7-filter.1
l7-filter.1
 
 
l7-filter.cpp
l7-filter.cpp
 
 
l7-filter.init
l7-filter.init
 
 
l7-parse-patterns.cpp
l7-parse-patterns.cpp
 
 
l7-parse-patterns.h
l7-parse-patterns.h
 
 
l7-queue.cpp
l7-queue.cpp
 
 
l7-queue.h
l7-queue.h
 
 
missing
missing
 
 
sample-l7-filter.conf
sample-l7-filter.conf
 
 
util.cpp
util.cpp
 
 
util.h
util.h
 
 

Repository files navigation

This is a version of l7-filter that works in userspace instead of the 
kernel.  It is eventually intended to replace the kernel version since 
running in userspace is much safer and more flexible.  However, it is in 
the early stages of development and NOT yet ready for prime time.

Full documentation is at http://l7-filter.sf.net/HOWTO-userspace 
The rest of this file is an extremely abbreviated version of the HOWTO. 
Please refer to the web version for a better guide.  Also see "man 
l7-filter" after installing.

*** Installation ***

- Run "./configure" to check for dependencies.
    You will likely need to install libnetfilter_conntrack and 
    libnetfilter_queue from ftp.netfilter.org
- Run "make".
- Run "sudo make install" or similar.

To choose a different install location use the options on configure.
For instance:

./configure --prefix=/usr

This will install the l7-filter executable in /usr/bin/ rather than
/usr/local/bin

*** Running ***

Make sure you have the ip_conntrack_netlink module loaded or compiled 
into your kernel.  Run l7-filter:

l7-filter -f configfile

See sample-l7-filter.conf for the format of the config file. Send 
traffic to it:

iptables -A FORWARD -j NFQUEUE --queue-num 0

or similar.

About

Userspace (netlink) packet classifier

l7-filter.clearfoundation.com/start

Resources

Readme

License

GPL-2.0 license
Activity
Custom properties

Stars

13 stars

Watchers

4 watching

Forks

9 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages