search for: ip_queu

Hi All, I am adding ip_queue module for snort inline IDS. I am using snort2.4.0 And iptables-1.3.4. Userspace Queuing(queue target) is enabled. It is built-in and not built as a module. The output of /proc/net/ip_queue is shown below: cat /proc/net/ip_queue> Peer PID : 0 Copy mode : 0 Copy range...

...strict-prototypes -Wno-trigraphs -O2 -fno-strict-aliasing -fno-common -fomit-frame-pointer -pipe -mpreferred-stack-boundary=2 -march=i686 -DMODULE -DMODVERSIONS -include /usr/src/linux-2.4.19/include/linux/modversions.h -nostdinc -I /usr/lib/gcc-lib/i386-redhat-linux/2.96/include -DKBUILD_BASENAME=ip_queue -c -o ip_queue.o ip_queue.c ip_queue.c: In function `ipq_rcv_nl_event': ip_queue.c:568: `NETLINK_URELEASE' undeclared (first use in this function) ip_queue.c:568: (Each undeclared identifier is reported only once ip_queue.c:568: for each function it appears in.) ip_queue.c:569: dereferenc...

Hello , I am trying to compile ctdb. I pull latest version 2-Jun-2009. During make it fails with error: Compiling utils/ipmux/ipmux.c In file included from /usr/include/linux/netfilter_ipv4/ip_queue.h:10, from /usr/include/libipq.h:37, from utils/ipmux/ipmux.c:31: /usr/include/linux/if.h:59: error: redefinition of `struct ifmap' /usr/include/linux/if.h:77: error: redefinition of `struct ifreq' /usr/include/linux/if.h:126: error: redefinition of `struc...

I want to use snort inline for ips and imq for bandwidth shaping When i have inserted imq module ip_queue module insertion giving error Is it possible to use both at the same time -- Failure seldom stops you. What stops you is the fear of failure. _______________________________________________ LARTC mailing list LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

Hi, I''m trying to configure IMQ to work on the same machine with frottle (http://frottle.sourceforge.net). The problem is both feed themselves packets through netfilter queueing mechanism, but currently there can only be one netfilter queue per protocol family. To explain why I need IMQ in the first place I have to explain what frottle does. It is a deamon that tweaks the behaviour of a

...nts to the access point run Frottle in client mode, and the PC/router behind the AP runs Frottle in master mode. The master controls traffic by polling the AP clients, telling them when to transmit. Frottle clients need to run this iptables script: modprobe iptable_filter # load module modprobe ip_queue # load module iptables -A INPUT -p UDP --sport 999 -j ACCEPT # Allow control packets in iptables -A OUTPUT -p UDP --dport 999 -j ACCEPT # Allow control packets out iptables -A OUTPUT -p ALL -o eth1 -j QUEUE # where eth1 is the wireless interface iptables -A FORWARD -p ALL -o eth1 -j QUEUE # wh...

...eases, HIPL has relied on libipq, but the package >>> manager cannot find this in F18. >> That is what you can find, for example, in Wikipedia: "libipq is a >> development library for iptables userspace packet queuing. Libipq >> provides an API for communicating with ip_queue. >> >> Libipq has been deprecated in favour of the newer libnetfilter_queue in >> Linux kernel-2.6.14 onwards." >> >> See also >> http://www.netfilter.org/projects/libnetfilter_queue/index.html >> >> If you will try: >> >> yum pr...

Question to the list, Has anyone here had experience using Shorewall (multi-isp configuration) with Snort inline? First, is this possible? Second, if anyone has done this, what documentation, if any did they use to set it up? Third, does snort have to run inline on a firewall (I''m under the impression it does)?

https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=39 ------- Additional Comments From laforge@netfilter.org 2003-02-03 16:32 ------- *** Bug 38 has been marked as a duplicate of this bug. *** ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.

...ted message. Occassionally, ipq_read() will return an error (rc = -1) and the error message says "Received truncated message". My code currently ignores that error and have the system continue processing. However, some packets seem to be staying in the ip queue (by checking '/proc/net/ip_queue'), which will cause the queue to fill up eventually. I checked the number of such error, and it matches exactly the number of packets staying in the queue. what is the proper way of handling it? -- Configure bugmail: http://bugzilla.netfilter.org/userprefs.cgi?tab=email ------- You are rece...

Hi everybody, it is my first message here. I tried to browse throughout older posts but I found no immediate answer. I need to change rate of a tbf queue while ip packets are already enqueued by it. If I go: tc qdisc replace|change|link dev eth0 root tbf rate 180kbit burst 1540 limit 15400 as results all enqueued packets seems to disappear. I can see that from a: tc -s qdisc ls dev eth0

Hi. Does anyone know if it is possible to use ip_queue and IMQ at the same time - if I modprobe one then the other will fail to modprobe with init_module: Device or resource busy TIA Andy. _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org...

...Version: linux-2.4.x Platform: All OS/Version: All Status: NEW Severity: normal Priority: P2 Component: ip_conntrack AssignedTo: laforge@netfilter.org ReportedBy: Bob.Halley@nominum.com Background Our application uses ip_queue in prerouting to divert DNS UDP packets to a userland daemon which inspects them and then issues a NF_ACCEPT or NF_DROP verdict back to the kernel. We found that if several packets with the same conntrack tuple, i.e. the same src addr, src port, dst addr, and dst port, arrive very close together,...

...ipt_tos.o ip_nat_h323.o ipt_IMQ.o ipt_pkttype.o ipt_TOS.o ip_nat_irc.o ipt_ipv4options.o ipt_pool.o ipt_ttl.o ip_nat_snmp_basic.o ipt_length.o ipt_POOL.o ipt_TTL.o ip_pool.o ipt_limit.o ipt_psd.o ipt_ULOG.o ip_queue.o ipt_LOG.o ipt_realm.o ipt_unclean.o iptable_filter.o ipt_mac.o ipt_recent.o iptable_mangle.o ipt_mark.o ipt_record_rpc.o [root@cab1 root]# [root@cab1 root]# tc -V tc utility, iproute2-ss010824 [root@cab1 root]# [root@cab1 root]# iptables -...

...let the packet through. DROP means to drop the packet on the floor. QUEUE means to pass the packet to userspace. (How the packet can be received by a userspace process differs by the particular queue handler. 2.4.x and 2.6.x kernels up to 2.6.13 include the ip_queue queue handler. Kernels 2.6.14 and later additionally include the nfnetlink_queue queue handler. Packets with a target of QUEUE will be sent to queue number '0' in this case. Please also see the NFQUEUE target as described later in this man page.) RETURN me...

Hi there I am using IAX2 softphones dialing into meetme conferences. I also have jitterbuffer=yes, with typical jitterbuffer settings. The problem I am having is that as soon as there is a delay from a participant, then the delay continues until the participant hangs up and dials in again. When dialing in again the delay seems to go. It seems to me as though as soon as the server registers

...ckets. Maybe someone with a little more iptables knowledge could tell me what I''m doing wrong or if its possible to have the systems setup so that it places packets that the firewall would allow into QUEUE. After setting up and starting shorewall I then issue the following (assuming that ip_queue module is loaded) iptables -A INPUT -i br0 -j QUEUE iptables -A FORWARD -i br0 -j QUEUE Running snort -Qv shows that snort isn''t seeing any packets but everything can pass by the box. On a box running just snort it sees everything. What I ended up doing was running two inline boxes, on...

Hello, You will find in attachment the layout of my current physical configuration. For now, the Cable ISP is not used. Since it is a dynamic ISP, my mailserver is rejected and my domain name registers on blacklists like ORDB and al. I want it to be used as a default gateway except for my mail server that would be seen as coming from my "honest" ADSL ISP. Here is