Welcome to Server Circle. It's a friendly site and all levels of experience are welcome. Be aware that we use cookies for your login.
Server Circle - Ask questions about Servers and get answers from experts.
Beta (0.70 sec)
IPtables matching packets with a string

I'm looking at doing some basic IDS stuff with IPtables from: http://netfilter.org

Can someone point me at some useful examples please for matching packets with a string ? Cheers.
Asked by:
TomPating
1355 points
 Report Abuse
 Share Page - Category: Server Firewalls - Tags: IPtables matching packets with a string
 Enter your response
Please use Pastie.org to paste lengthy code or to fix formatting issues with code
  • Responses in reverse (3)

Best Answer

Sudo iptables -D INPUT -m string --string servercircle -j LOG --algo bm --log-prefix SERVERCIRCLE

You'd think that'd log your browsing to servercircle. Not if compression is enabled (see Content-Encoding: gzip in the HTTP headers).

Response by:
s
3383 points
Also take a look at this post:

http://www.servercircle.c ...

Response by:
Bogofilter
1565 points
Sorry, it should read -I instead of -D, I had copy-pasted the wrong command. Use -D to remove the rule after.

Response by:
s
3383 points


  • Related Questions





About Us : Contact Us : Etiquette : Terms : CDN Failover : ShorterURL : CDN Fallback : © 2013 Server Circle