I need a linux packet capturing software to act in 2 possible ways (you choose the best solution):
1) It act BEFORE iptables, so, an algorithm will analyze the packet info and, depending on algorithm result, it will to run a command on system, like "iptables -I INPUT -s IP_FROM_PACKET -p udp -j ACCEPT"
2) It act AFTER iptables, so, an algorithm will analyze the packet info and depending on algorithm result it will allow or block the packet to go to main aplication
why do I need that?
I'm receiving a spoofed udp attack, so I want to make an automatic whitelist.
one possible way is to have all possible ipv4 on a list (I know, I would need something like 40 GB RAM, but I don't care if it works well)
12 freelancers are bidding on average $277 for this job
Hello, I have experience in Linux programming over 10 years. I was administrator of server in ISP. I hope to discuss more detail with you. I have knowledge about iptable6. Thank you.
Hi, I have more than 4 years of experience in Linux C - network programming. I can do this job for you. Let me know if you are interested. you can reach me at embitsolATgmailDOTcom Thanks, EmbITSol
Sat, 06 Dec 2014 04:28:26 +0530 What is present rule for spoofed packets? Logs for these packets. Lan setup: bandwidth allocation source port for udp packets (in the lan) kernel version? distro?