Re: IPTables QUEUE target equivalency in other firewalls

[John Dorsey <dorsey () colquitt org>]

Rod,

> Netfilter/IPTables supports a target of QUEUE which delivers packets to
> a userspace interface where they can be modified,inspected etc.  For
[deletia]
> Do any other firewalls have a similar function?  I am particularly
> interested in ipFilter, ipfw, packetfilter, or PIX (I know PIX is highly
> unlikely since it is more of a dedicated appliance).

        It's not exactly the same, but the PIX has a 'capture' feature
that lets you collect packets that match an acl, and view a summary or
offload elsewhere.  I think it exports pcap format; I usually just
inspect them online.  You can't modify packets with it.

        I don't know any way to automate it without 'expect' or
equivalent.

> Thanks for the information.

        yw.

Cheers,
John Dorsey

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards