Netfilter, ip_queue And Netlink
- Netfilter (Linux's firewall) supports a unique target - passing packets
to a user program for control purposes.
- We specify an iptables rule with the QUEUE target...
- And write a program that 'judges' packets - "this one goes, this one
stays, this one gets modified...".
Originally written by
guy keren