* https on non-standard port
@ 2007-03-14 6:53 afshin lamei
2007-03-14 13:59 ` Pablo Sanchez
0 siblings, 1 reply; 2+ messages in thread
From: afshin lamei @ 2007-03-14 6:53 UTC (permalink / raw)
To: netfilter
Dear all,
I'm trying to detect the HTTPS traffic which is not on port 443. As
I've seen in Layer7 documents at http://l7-filter.sourceforge.net
there is no a predefined pattern for that.
How can I detect it using iptables matches such as "-m string" or
anything else?
regards
afshin
^ permalink raw reply [flat|nested] 2+ messages in thread
* RE: https on non-standard port
2007-03-14 6:53 https on non-standard port afshin lamei
@ 2007-03-14 13:59 ` Pablo Sanchez
0 siblings, 0 replies; 2+ messages in thread
From: Pablo Sanchez @ 2007-03-14 13:59 UTC (permalink / raw)
To: 'afshin lamei', netfilter
> -----Original Message-----
> From: netfilter-bounces@lists.netfilter.org
> [mailto:netfilter-bounces@lists.netfilter.org] On Behalf Of
> afshin lamei
> Sent: Wednesday, March 14, 2007 2:54 AM
> To: netfilter@lists.netfilter.org
> Subject: https on non-standard port
>
> Dear all,
> I'm trying to detect the HTTPS traffic which is not on port 443. As
> I've seen in Layer7 documents at http://l7-filter.sourceforge.net
> there is no a predefined pattern for that.
Hi,
I think you may have misunderstood the L7 documentation; L7 can and will
identify SSL (HTTPS) traffic independent of port number.
Here's the pattern it uses:
<http://l7-filter.sourceforge.net/layer7-protocols/protocols/ssl.pat>
Cheers,
-pablo
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2007-03-14 13:59 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2007-03-14 6:53 https on non-standard port afshin lamei
2007-03-14 13:59 ` Pablo Sanchez
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.