Configuring snort or iptables to drop packets (based on string)
$30-5000 USD
Cancelled
Posted about 15 years ago
$30-5000 USD
Paid on delivery
I need help with configuring either iptables or snort (whichever is more efficient) to drop packets received on already establed tcp connections.
the packets i want to drop contain a specific string & i do not want them reaching the application that handles the connection
i've tried this in iptables however nothing happens:
-A FORWARD -m string --string "stringtodrop" --algo bm -j DROP
I'm using Centos 5 kernel [login to view URL]
I have not yet attempted to install snort (I have only read about it).
Anyone that has experience with this, please bid for your assistance!
## Deliverables
1) Complete and fully-functional working program(s) in executable form as well as complete source code of all work done.
2) Deliverables must be in ready-to-run condition, as follows (depending on the nature of the deliverables):
a) For web sites or other server-side deliverables intended to only ever exist in one place in the Buyer's environment--Deliverables must be installed by the Seller in ready-to-run condition in the Buyer's environment.
b) For all others including desktop software or software the buyer intends to distribute: A software installation package that will install the software in ready-to-run condition on the platform(s) specified in this bid request.
3) All deliverables will be considered "work made for hire" under U.S. Copyright law. Buyer will receive exclusive and complete copyrights to all work purchased. (No GPL, GNU, 3rd party components, etc. unless all copyright ramifications are explained AND AGREED TO by the buyer on the site per the coder's Seller Legal Agreement).
## Platform
lnux