Re: [Devil-Linux-discuss] P2p traffic filtering

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Hi,

Mgr. Motycka Jiri wrote:

> BTW: Has anybody any experiences with layer7 in DL?
Yes. I used it some time ago  - with ver. 1.2.9

> I made one simple firewall rule which should block rtsp protocol and 
> this rule blocks nothing and content of the packets sends to the syslog ?
> Does anybody know why ?
> 
> This is the rule:
> $IPTABLES -t mangle -A POSTROUTING -m layer7 --l7proto rtsp -j DROP
One thing was unexpected for me - it's ip_conntrack module. It should be loaded.

So, you can check the l7-filter functionality by executing the command
iptables -A OUTPUT -m layer7 --l7proto http
and checking the counters (iptables -nvL) after downloading. As I said before,
don't omit ip_conntrack module loading please.

--
 Serge Leschinsky