Layer-7 Packet Classifier for Linux 2.7 reviewDownload
Layer-7 Packet Classifier for Linux is a classifier for the Linux kernel's Netfilter subsystem that identifies packets based on
Layer-7 Packet Classifier for Linux is a classifier for the Linux kernel's Netfilter subsystem that identifies packets based on application layer data (OSI layer 7).
This means that it can classify packets as HTTP, FTP, Gnucleus, eDonkey2000, etc, regardless of port. Our classifier complements existing ones that match on address, port numbers and so on.
Our intent is for l7-filter to be used in conjunction with Linux QoS to do bandwith arbitration ("packet shaping").
Here are some key features of "Layer dash 7 Packet Classifier for Linux":
Patches for Linux 2.4 and 2.6
Support for TCP, UDP and ICMP over IPv4
Uses Netfilter's connection tracking of FTP, IRC, etc
Examines data across multiple packets
Number of packets examined tunable through /proc/net/layer7_numpackets
With the Netfilter helper match, can distinguish between parent (ex. ftp command) and child (ex. ftp data) connections
Gives access to both Netfilter (firewall) and QoS (rate limiting) features
Might be in the stock kernel, or at least patch-o-matic, some day
What's New in This Release:
ipt_layer7 now loads ip_conntrack automatically.
Layer-7 Packet Classifier for Linux 2.7 keywords