25 Aug
2003
25 Aug
'03
16:15
Hi again, BLeonhardt@analytek.de wrote:
so, I guess it's possible to put all related packets into a user-space , merging all packets / or better fragments together and look for the string, then deciding if dropping or not. So the http or any other connection oriented server should get its ACK and the firewall will decide if dropping the packets or not. This will not increase the network traffic - but the requirements onto the hardware.
you are suggesting to write a userspace daemon that queues the packets of a connection, evaluates the content and takes actions like allowing it to pass through or denying/dropping it, right? you, sir, are talking about a proxy/application level gateway ;) peace, Tom