[3/3] kprobes-netpktlog-268-rc3.patch

From: Prasanna S Panchamukhi (prasanna_at_in.ibm.com)
Date: 08/05/04

Next message: Paul Jackson: "[PATCH] new bitmap list format (for cpusets)"

Previous message: Mike Becher: "ptrace problem on ia64 with kernel 2.4.26"
Next in thread: Andi Kleen: "Re: [3/3] kprobes-netpktlog-268-rc3.patch"
Maybe reply: Andi Kleen: "Re: [3/3] kprobes-netpktlog-268-rc3.patch"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Date:	Thu, 5 Aug 2004 15:41:43 +0530
To: linux-kernel@vger.kernel.org, torvalds@osdl.org, ak@muc.de, akpm@osdl.org, suparna@in.ibm.com

Hi,

Below is the [3/3] kprobes-netpktlog-268-rc3.patch

This patch provides network packet tracing using source and destination IP by
trapping at various routines in the network stack.It demonstrates how
a packet travels through the network stack, as suggested by Andi Kleen.

Usage:
        Compile the kernel with options CONFIG_KPROBES, CONFIG_NETPKTLOG,
CONFIG_NETFILTER, CONFIG_IP_NF_IPTABLES and CONFIG_IP_NF_TARGET_LOG enabled.
You need to specify the parameters to the netpktlog module.
To filter packets based on source and target ip, insert the module with
source and target ip.
        $insmod netpktlog.ko netpktlog=@9.182.15.133,9.182.15.188
To filter packets based on only source ip, insert module with source ip.
        $insmod netpktlog.ko netpktlog=@9.182.15.133,
To filter packets based on target ip, insert module with target ip.
        $insmod netpktlog.ko netpktlog=@,9.182.15.188

Please see the description of the patch for more details.

Your comments are welcome!

Thanks
prasanna

-- 
Have a Nice Day!
Thanks & Regards
Prasanna S Panchamukhi
Linux Technology Center
India Software Labs, IBM Bangalore
Ph: 91-80-25044636
<prasanna@in.ibm.com>

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

text/plain attachment: kprobes-netpktlog-268-rc3.patch

Next message: Paul Jackson: "[PATCH] new bitmap list format (for cpusets)"

Previous message: Mike Becher: "ptrace problem on ia64 with kernel 2.4.26"
Next in thread: Andi Kleen: "Re: [3/3] kprobes-netpktlog-268-rc3.patch"
Maybe reply: Andi Kleen: "Re: [3/3] kprobes-netpktlog-268-rc3.patch"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages

Re: Ethernet issue: works one way but not another
... packets transmitted, 5 packets received, 0% packet loss ... (This is when connected directly to internet through ... FBSD, I have been working with BSDI at the isp I work for for the last ... As for my network topology, I have an internal network that goes ...
(freebsd-questions)
Re: Update: UDP 770 Potential Worm
... > the network immediately after the 'attack', ... were no packets indicating some form of replication. ... I noticed that the UDP ... > of the UDP datagrams is the IP address of the proxy? ...
(Incidents)
Re: IDSIPS that can handle one Gig
... especially with 64-byte UDP packets. ... There are plenty of network IPS's ... IDS/IPS devices through use of fragments. ... Find out quickly and easily by testing it with real-world attacks from ...
(Focus-IDS)
Re: iptables and dhcp
... > the same physical network segment as the firewall and the remote DHCP ... You used INPUT and not FORWARD chain ... # This target allows packets to be marked in the mangle table ...
(comp.os.linux.networking)
RE: Mapping Class A network ( any easy trick?)
... and wondering how I can map the network ... packets per second rate to ask for. ... This will read the payloads.conf file which may have multiple payloads ... per port. ...
(Pen-Test)