About iptables and layer7 in Fedora 16
Cristian Sava
csava at central.ucv.ro
Wed Mar 21 11:00:34 UTC 2012
The problem is this: "Fedora does not support DIP for now"
Any usefull solution (ignoring legality
http://netequalizernews.com/2011/02/08/what-is-deep-packet-inspection-and-why-the-controversy/)
to block bittorrent?
And please lets stay at fedora solution level.
C. Sava
On Wed, 2012-03-21 at 18:25 +0800, Ed Greshko wrote:
> On 03/21/2012 06:15 PM, Jatin K wrote:
> > On Wednesday 21 March 2012 03:03 PM, Cristian Sava wrote:
> >> Hi all,
> >>
> >> I need to use something like
> >>
> >> ...>iptables -A FORWARD -m layer7 --l7proto bittorrent -j DROP
> >>
> >> and I get this message:
> >>
> >> "iptables v1.4.12: Couldn't load match `layer7':No such file or
> >> directory"
> >>
> >> Do I need to recompile the kernel, the layer7 module and so on?
> >> If so, any kernel update will destroy this.
> >> Any easy solution?
> >>
> >> C. Sava
> >>
> >>
> > module is loaded ???? check it with " modprobe -l | grep ipt_layer7 ( not
> > sure its ipt_layer7 or what ... )
> >
> > if not load it with modeprobe ipt_layer7 , then try to add the rule
> >
> >
>
> If that module existed, wouldn't you expect it to be under
>
> /lib/modules/`uname -r`/kernel/net/ipv4/netfilter/ ?
>
> If so, looking there shows there is no such module on F16.
>
>
>
>
> --
> Do not condemn the judgment of another because it differs from your own. You may both
> be wrong. -- Dandemis
More information about the users
mailing list