libnetfilter_queue编程，我怎么知道哪个程序发送数据包? [英] libnetfilter_queue programming , how can i know which program send the packet?

问题描述

我正在尝试为Linux创建一个应用程序级防火墙，但是现在我只能说ip地址，端口号之类的东西.

I'm trying to make an application level firewall for Linux , but for now i could only tell stuff like ip address , port number.

是否可以知道哪个程序发送了数据包?如果我不需要放置内核模块.

Is it possible to know which program send the packet ? If i don't need to place a kernel module.

谢谢！

推荐答案

目前不在.三种情况:

• 输入功能:到xtables运行时，套接字查找尚未完成
• 转发路径:显然没有本地套接字
• (本地)输出路径:尽管存在提出了补丁程序，但没有引起足够的重视.

• input paath: The socket lookup has not been done yet by the time xtables runs
• forward path: There obviously is no local socket
• (local) output path: Neither the process info nor the socket info is passed onto nf_queue, though there was a patch proposed but has not received much attention.

这篇关于libnetfilter_queue编程，我怎么知道哪个程序发送数据包?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！