Download Shareware and Freeware Software for Windows, Linux, Macintosh, PDA

line Home  |  About Us  |  Link To Us  |  FAQ  |  Contact

Serving Software Downloads in 976 Categories, Downloaded 29.540.828 Times

IpTables Rope 20051223

  Date Added: August 08, 2010  |  Visits: 589

IpTables Rope

Report Broken Link
Printer Friendly Version


Product Homepage
Download (77 downloads)



ROPE is a "match module" for Linux IpTables that allows packets to be matched using highly flexible rules, written in a simple purpose-designed scripting language. It was written initially to provide support for the next phase of the P2PWall project for controlling various styles of peer-to-peer application traffic, but is much broader than this in its possible uses. See the Basics page for a tutorial-style overview. The match modules of iptables allow rules to take actions depending on whether packets match certain criteria or not. The standard distribution of netfilter / IpTables provides a range of useful modules of this type. These typically allow protocol types (TCP or UDP), source and destination addresses and ports etc to be checked. There is also a set of interesting "extras" than can be compiled into the kernel to provide some extended packet matching features. One such example is the "string" module that allows packets to be matched on the basis of the existance (or otherwise) of specified strings anywhere in the data payload portion of the packets. There are a number of other hidden treasures that can be used to significantly extend the features of the system. In order to use ROPE to build a match rule, you first need to write the ROPE scriptlet that encodes your match criteria. As an example, we could look for the "Content-length" header of an HTTP download and check that the length does not exceed 1000000 bytes using the following script.. This script has the following steps in order to make it work: 1. Searches the data payload of the packet for the string "Content-length: ", but ignores letter case as it searches. 2. If the string is not found, the script stops and returns a "not matched" status to netfilter. 3. If the string is found, the script takes the digits that follow it, and stores them as a string in the register $n. 4. The string in $n is converted to an integer and compared against the number 1000000. If $n is large than 1000000 then the script terminates and returns a "matched" status to IpTables. 5. Otherwise, the script terminates with a "not matched" status. The language in which scripts like this are written is based on the idea of ReversePolish notation but extended to handle the concept of AnchorBrackets. The language is documented in detail in LanguageReference.. ROPE - IpTables Scripting Language

Requirements: No special requirements
Platforms: Linux
Keyword: For Linux Iptables Iptables Rope Linux Iptables Match Matched Module Monitoring Packets Rope Script String System
Users rating: 0/10

License: Freeware Size: 61.44 KB
USER REVIEWS
More Reviews or Write Review


IPTABLES ROPE RELATED
Networking Tools  -  Ruby Iptables Network Displayer 0.6
Ruby Iptables NEtwork Displayer project draws an SVG from a Linux IP table generated by "iptables-save"..
15.36 KB  
Utilities  -  Compact Flash Linux Project 1.0p7
The Compact Flash Linux Project is a Linux distribution designed to run on a compact flash card in read-only mode. It is as small as possible, and currently needs around 14 MB. Compact Flash Linux Project includes OpenSSH, quagga, iptables,...
174.08 KB  
Utilities  -  Icepack Linux 2.75
Icepack linux is an independent Linux distribution built from scratch. Our objective is to offer you a user-friendly full-featured operating system, pre-configured, well structured and easy to work with, and filled with the latest stable versions...
574 MB  
Utilities  -  Hikarunix 0.4
Hikarunix linux is a Live Linux CD distribution. Any PC that can boot to CD can boot to Hikarunix instead of the computers regular operating system. Since it boots entirely in RAM and only borrows the peripherals, Hikarunix doesnt touch the host...
202.6 MB  
Firewalls  -  Linmkfwall 0.3
Linmkfwall is able to set up a firewall for your linux box ( ipfwadm, ipchains and iptables are supported ). The firewall rules are put in a Unix script shell file that you have to execute as root.
10.24 KB  
Networking Tools  -  NAT iptables firewall script
NAT iptables firewall script is an iptables firewall script. This script is meant to be run once per boot the rules will be double added if you try to run it twice if you need to add another rule during runtime, change the -A to a -I to add it...
 
Networking Tools  -  Fair NAT 0.80
Fair NAT is a script for configuring NAT on dedicated Linux routers. This is the home of my linux router shaper script which allows something like fair bandwidth sharing among clients in the local network. The script is not great or anything -...
31.74 KB  
Instant Messagers  -  jIRCii for Linux 2031
jIRCii is an IRC (Internet Relay Chat) client for Windows, MacOS X, and Linux. jIRCii features include over 70 built in commands, multiple server connections, SSL support, DCC/CTCP support, fully scriptable, fast, and an ircii'sh client feel.
952.32 KB  
Libraries  -  Linux::Joystick 0.0.1
Linux::Joystick is an object-oriented, pure Perl API for accessing joystick devices under Linux-based operating systems. Linux::Joystick module is capable of using either blocking or non-blocking I/O, and represents each axis change or button...
22.53 KB  
Utilities  -  DeLi Linux 0.7.2
DeLi Linux stands for "Desktop Light" Linux. It is a Linux Distribution for old computers, from 486 to Pentium MMX 166 or so. Its focused on desktop usage. DeLi Linux project includes email clients, graphical web browser, an office package with...
128 MB  
NEW DOWNLOADS IN LINUX SOFTWARE, UTILITIES
Linux Software  -  Polling Autodialer Software 3.4
ICTBroadcast Auto Dialer software has a survey campaign for telephone surveys and polls. This auto dialer software automatically dials a list of numbers and asks them a set of questions that they can respond to, by using their telephone keypad....
488 B  
Linux Software  -  Total Video Converter Mac Free 3.5.5
Total Video Converter Mac Free developed by EffectMatrix Ltd is the official legal version of Total Video Converter which was a globally recognized brand since 2006. Total Video Converter Mac Free is a free but powerful all-in-one video...
17.7 MB  
Linux Software  -  Skeith mod_log_sql Analyzer 2.10beta2
Skeith is a php based front end for analyzing logs for Apache using mod_log_sql.
47.5 KB  
Linux Software  -  SLAX 6.0+
Slax is a modern, portable, small and fast Linux operating system with a modular approach and outstanding design. Despite its small size, Slax provides a wide collection of pre-installed software for daily use, including a well organized graphical...
190 KB  
Linux Software  -  GTK+ 2.5
GTK+, which stands for the GIMP Toolkit, is a library for creating graphical user interfaces for the X Window System. It is designed to be small, efficient, and flexible. GTK+ is written in C with a very object-oriented approach. Language bindings...
60 MB  
Utilities  -  LPAR2RRD 4.95-4
LPAR2RRD collects performance data and generates actual, historical and future trends utilization graphs of your virtual environment. It is agentless (it receives everything from the management stations like vCenter or HMC). The product supports...
2.25 MB  
Utilities  -  Nessconnect 1.0.2
Nessconnect is a GUI, CLI and API client for Nessus and Nessus compatible servers. With an improved user interface, it provides local session management, scan templates, report generation through XSLT, charts and graphs, and vulnerability trending.
819.2 KB  
Utilities  -  Dynamic Power Management 2.6.16
The Dynamic Power Management (DPM) project explores technologies to improve power conservation capabilities of platforms based on open source software. Of particular interest are techniques applicable to running systems, adjusting power parameters...
30.72 KB  
Utilities  -  Ethernet bridge tables 2.4.37.9
Ethernet bridge tables - Linux Ethernet filter for the Linux bridge. The 2.4-ebtables-brnf package contains the ebtables+bridge-nf patch. Be sure to check out the ebtables hp. This site also contains the arptables userspace tool.
40.96 KB  
Utilities  -  SaraB 1.0.0
SaraB works with DAR (Disk ARchive) to schedule and rotate backups on random-access media (i.e. hard drives, CDs, DVDs, Zip, etc. Basically anything except magnetic tapes.) This reduces hassle for the administrator by providing an automatic backup...
20.48 KB