* nf-queue.c as an example of libnetfilter_queue
@ 2013-04-12 13:38 Flavio Poletti
2013-04-23 0:13 ` Flavio Poletti
0 siblings, 1 reply; 3+ messages in thread
From: Flavio Poletti @ 2013-04-12 13:38 UTC (permalink / raw)
To: netfilter
Hello All,
I was curious about NFQUEUE/QUEUE targets for iptables and I
eventually landed on libnetfilter_queue.
As documented by the doxygen stuff online, the library provides some
functions (e.g. nfq_open(), nfq_handle_packet(), nfq_set_verdict(),
etc.).
On the other hand, the example nf-queue.c program in the examples
directory does not seem to use these functions at all.
Is there some place where I can find out some examples of usage of
libnetfilter_queue functions? Are they deprecated and should I go for
the Netlink-based solution as in the example?
Thank you,
Flavio.
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: nf-queue.c as an example of libnetfilter_queue
2013-04-12 13:38 nf-queue.c as an example of libnetfilter_queue Flavio Poletti
@ 2013-04-23 0:13 ` Flavio Poletti
2013-04-23 0:43 ` Pablo Neira Ayuso
0 siblings, 1 reply; 3+ messages in thread
From: Flavio Poletti @ 2013-04-23 0:13 UTC (permalink / raw)
To: netfilter
Hi,
The example file nf-queue.c program in the examples
directory does not seem to use the functions in the library at all.
Are they deprecated in favor of something else?
This is a repetition of a question I sent some 10 days ago, sorry for
bothering again
but I'm interested into this. Anyway I won't post it again if I get no
answers, please
accept apologies in advance if inconvenient.
Thanks,
Flavio.
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: nf-queue.c as an example of libnetfilter_queue
2013-04-23 0:13 ` Flavio Poletti
@ 2013-04-23 0:43 ` Pablo Neira Ayuso
0 siblings, 0 replies; 3+ messages in thread
From: Pablo Neira Ayuso @ 2013-04-23 0:43 UTC (permalink / raw)
To: Flavio Poletti; +Cc: netfilter
On Tue, Apr 23, 2013 at 02:13:22AM +0200, Flavio Poletti wrote:
> Hi,
>
> The example file nf-queue.c program in the examples
> directory does not seem to use the functions in the library at all.
>
> Are they deprecated in favor of something else?
>
> This is a repetition of a question I sent some 10 days ago, sorry
> for bothering again but I'm interested into this. Anyway I won't
> post it again if I get no answers, please accept apologies in
> advance if inconvenient.
Both APIs are currently supported, nf-queue uses libmnl. The former
uses the old libnfnetlink. I needed a rather more flexible API for the
connection tracking support in user-space in conntrackd over libmnl.
The new API also provides also helpers for ipv4, ipv6, tcp and udp,
which seems to be a common requirement for everyone. See the
libnetfilter_queue/src/extra/ directory in case you want to check
implementation details.
You can generate up to date doxygen documentation with the following
command:
libnetfilter_queue$ doxygen doxygen.cfg
Regards.
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2013-04-23 0:43 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2013-04-12 13:38 nf-queue.c as an example of libnetfilter_queue Flavio Poletti
2013-04-23 0:13 ` Flavio Poletti
2013-04-23 0:43 ` Pablo Neira Ayuso
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.