Documentation / networking / filter.txt
Custom Search
Based on kernel version 3.2. Page generated on 2012-01-05 23:29 EST.
1 filter.txt: Linux Socket Filtering 2 Written by: Jay Schulist <jschlst@samba.org> 3 4 Introduction 5 ============ 6 7 Linux Socket Filtering is derived from the Berkeley 8 Packet Filter. There are some distinct differences between 9 the BSD and Linux Kernel Filtering. 10 11 Linux Socket Filtering (LSF) allows a user-space program to 12 attach a filter onto any socket and allow or disallow certain 13 types of data to come through the socket. LSF follows exactly 14 the same filter code structure as the BSD Berkeley Packet Filter 15 (BPF), so referring to the BSD bpf.4 manpage is very helpful in 16 creating filters. 17 18 LSF is much simpler than BPF. One does not have to worry about 19 devices or anything like that. You simply create your filter 20 code, send it to the kernel via the SO_ATTACH_FILTER ioctl and 21 if your filter code passes the kernel check on it, you then 22 immediately begin filtering data on that socket. 23 24 You can also detach filters from your socket via the 25 SO_DETACH_FILTER ioctl. This will probably not be used much 26 since when you close a socket that has a filter on it the 27 filter is automagically removed. The other less common case 28 may be adding a different filter on the same socket where you had another 29 filter that is still running: the kernel takes care of removing 30 the old one and placing your new one in its place, assuming your 31 filter has passed the checks, otherwise if it fails the old filter 32 will remain on that socket. 33 34 Examples 35 ======== 36 37 Ioctls- 38 setsockopt(sockfd, SOL_SOCKET, SO_ATTACH_FILTER, &Filter, sizeof(Filter)); 39 setsockopt(sockfd, SOL_SOCKET, SO_DETACH_FILTER, &value, sizeof(value)); 40 41 See the BSD bpf.4 manpage and the BSD Packet Filter paper written by 42 Steven McCanne and Van Jacobson of Lawrence Berkeley Laboratory.
- [ networking ]
- 00-INDEX
- 3c359.txt
- 3c505.txt
- 3c509.txt
- 6pack.txt
- alias.txt
- arcnet-hardware.txt
- arcnet.txt
- atm.txt
- ax25.txt
- batman-adv.txt
- baycom.txt
- bonding.txt
- bridge.txt
- [ caif ]
- can.txt
- cops.txt
- cs89x0.txt
- cxacru-cf.py
- cxacru.txt
- cxgb.txt
- dccp.txt
- de4x5.txt
- decnet.txt
- depca.txt
- dl2k.txt
- DLINK.txt
- dm9000.txt
- dmfe.txt
- dns_resolver.txt
- driver.txt
- e100.txt
- e1000.txt
- e1000e.txt
- eql.txt
- ewrk3.txt
- fib_trie.txt
- filter.txt
- fore200e.txt
- framerelay.txt
- gen_stats.txt
- generic-hdlc.txt
- generic_netlink.txt
- gianfar.txt
- ieee802154.txt
- ifenslave.c
- igb.txt
- igbvf.txt
- ip-sysctl.txt
- ip_dynaddr.txt
- ipddp.txt
- iphase.txt
- ipv6.txt
- ipvs-sysctl.txt
- irda.txt
- ixgb.txt
- ixgbe.txt
- ixgbevf.txt
- l2tp.txt
- lapb-module.txt
- LICENSE.qla3xxx
- LICENSE.qlcnic
- LICENSE.qlge
- ltpc.txt
- mac80211-injection.txt
- [ mac80211_hwsim ]
- Makefile
- multicast.txt
- multiqueue.txt
- netconsole.txt
- netdev-features.txt
- netdevices.txt
- netif-msg.txt
- nfc.txt
- olympic.txt
- operstates.txt
- packet_mmap.txt
- phonet.txt
- phy.txt
- pktgen.txt
- PLIP.txt
- policy-routing.txt
- ppp_generic.txt
- proc_net_tcp.txt
- radiotap-headers.txt
- ray_cs.txt
- rds.txt
- README.ipw2100
- README.ipw2200
- README.sb1000
- regulatory.txt
- rxrpc.txt
- s2io.txt
- scaling.txt
- sctp.txt
- secid.txt
- skfp.txt
- smc9.txt
- smctr.txt
- spider_net.txt
- stmmac.txt
- tc-actions-env-rules.txt
- tcp-thin.txt
- tcp.txt
- [ timestamping ]
- timestamping.txt
- tlan.txt
- tms380tr.txt
- tproxy.txt
- tuntap.txt
- udplite.txt
- vortex.txt
- vxge.txt
- x25-iface.txt
- x25.txt
- xfrm_proc.txt
- xfrm_sync.txt
- xfrm_sysctl.txt
- z8530drv.txt
Information is copyright its respective author. All material is available from the Linux Kernel Source distributed under a GPL License. This page is provided as a free service by mjmwired.net.