homepage Welcome to WebmasterWorld Guest from 54.226.213.228
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Become a Pro Member
Visit PubCon.com
Home / Forums Index / Hardware and OS Related Technologies / Linux, Unix, and *nix like Operating Systems
Forum Library, Charter, Moderators: bakedjake

Linux, Unix, and *nix like Operating Systems Forum

    
Capturing a packet from ethernet and transfering to Apache in Linux
Abakash




msg:3250166
 4:15 pm on Feb 12, 2007 (gmt 0)

Hi,
I am working on a firewall and need to capture packets from the ethernet and then do some analysis on it before sending it to Apache application. I am been able to capture the packets but they are also received by the Apache at the same instant. But I need to analyze the packet before it is received by apache. Any help in this regard would be highly appreciated.

Abakash

 

MattyMoose




msg:3250532
 9:34 pm on Feb 12, 2007 (gmt 0)

The issue that you're having is that running something (tcpdump/snort/wireshark) in promiscuous mode is considered passive monitoring, where it does not modify or block any incoming traffic.

What you're looking for is either a "helper" application that listens to port 80, analyzes the traffic, then forwards it to apache (listening on another port).

Or, what you might want to look at is having another system that is acting as a router (NAT or otherwise) in front of your apache server, with two NICs, which analyzes the traffic, and if it deems it good, it can forward it on to the apache webserver.

Cheers,
MM

Global Options:
 top home search open messages active posts  
 

Home / Forums Index / Hardware and OS Related Technologies / Linux, Unix, and *nix like Operating Systems
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
© Webmaster World 1996-2014 all rights reserved