mirror of https://github.com/subgraph/fw-daemon
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
brl
2d8afe1d60
|
10 years ago | |
|---|---|---|
| .. | ||
| LICENSE | 10 years ago | |
| README.md | 10 years ago | |
| multiqueue.go | 10 years ago | |
| nfqueue.c | 10 years ago | |
| nfqueue.go | 10 years ago | |
| nfqueue.h | 10 years ago | |
| packet.go | 10 years ago | |
README.md
Go-NFQueue
Go Wrapper For Creating IPTables' NFQueue clients in Go
Usage
Check the examples/main.go file
cd $GOPATH/github.com/OneOfOne/go-nfqueue/examples
go build -race && sudo ./examples
- Open another terminal :
sudo iptables -I INPUT 1 -m conntrack --ctstate NEW -j NFQUEUE --queue-num 0
#or
sudo iptables -I INPUT -i eth0 -m conntrack --ctstate NEW -j NFQUEUE --queue-num 0
curl --head localhost
ping localhost
sudo iptables -D INPUT -m conntrack --ctstate NEW -j NFQUEUE --queue-num 0
Then you can ctrl+c the program to exit.
- If you have recent enough iptables/nfqueue you could also use a balanced (multithreaded queue).
- check the example in
examples/mq/multiqueue.go
iptables -I INPUT 1 -m conntrack --ctstate NEW -j NFQUEUE --queue-balance 0:5 --queue-cpu-fanout
Notes
You must run the executable as root. This is WIP, but all patches are welcome.
License
go-nfqueue is under the Apache v2 license, check the included license file.
Copyright © Ahmed W.
See the included LICENSE file.
Copyright (c) 2014 Ahmed W.