-
Notifications
You must be signed in to change notification settings - Fork 59
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Setup nDPI-netfilter inline mode #26
Comments
See example in ndpi-netfilter/INSTALL. |
@vel21ripn there is nothing mentioned in the INSTALL file about a bridge setup that he needs\requires.(as far as my knowledge goes) Basically @androuxx to make it work you will need to setup a bridge over eth0+eth1 and using bridge tables you will need to "divert" or "drop" the packets from the bridge level to the firewall\iptables level. |
nDPI not known about layer 2. Use (filter|mangle)/FORWARD for control traffic betweent physical interfaces of bridged interface. |
what is the best way to setup ndpi-netfilter to control network traffic between internet and network? |
@androuxx for your case you will need to go one step at a time.
You will be able to start playing with DPI. To allow iptables inspect the bridge traffic the next might help you:
Notice to first make sure it works on a single client and them move forward to more machines. Let me know if it helps. |
@elico
then the traffic is flowing as expected and accessing the network is working. |
@androuxx I will try to test it on the next days\week. |
@androuxx what is the output of:
|
@androuxx it appears that some of my assumptions was wrong since I'm used to squid way of handling things.
And some stats:
|
a lot of thanks @elico |
@androuxx any news? |
i install nDPI-netfilter module to my ubuntu 16.04 LTC and i need to setup my machine to work inline-mode between the gateway and my network.
i have 3 network interface on my machine, one for control the machine and two for forward and control the traffic between the internet and the network.
how i can setup ndpi-netfiler iptables for controlling the traffic without NAT rules (without setting ip addresses for eth0 and eth1)?
what iptables rules i need to set for forward and control the traffic with iptables and tc ?
The text was updated successfully, but these errors were encountered: