L7-filter is a new packet classifier for the Linux kernel. Unlike other classifiers, it doesn't just look at simple values such as port numbers. Instead, it does regular expression matching on the application layer data to determine what protocols are being used.
|» Layer7 filtering content (0 replies, last 29.4.2006 01:53 by Iyke)|
|» QoS-L7 Package v0.2 available (11 replies, last 15.2.2006 23:53 by Jenya)|
|» cron jobs (2 replies, last 1.2.2006 05:13 by nachazo)|
|» QoS L7 and RRDStat to Coyote Linux Personal Firewall (0 replies, last 4.1.2006 16:46 by Radiator)|
|» L7 update script (1 replies, last 29.12.2005 21:34 by dolly)|
L7-filter is a Netfilter match module which classifies packets based on application layer (OSI layer 7) data. This means that it is able to classify packets as HTTP, FTP, Gnucleus, Kazaa, etc., regardless of ports. It complements existing matches that classify based on port numbers, packet length, TOS bits, and so on. Combined with Linux QoS, it allows for full layer 7 packet shaping.
QOS-L7 package is Coyote Linux & BrazilFW implementation of L7-filter capabilities. L7-filter support is already build in standard Coyote Linux and BrazilFW distributions. This package simplifies L7-filter configuration and integrates L7-filtering capabilities to existing QOS classes. It uses webbased configuration and management capabilities provided by webadmin interface. Coyote(BrazilFW) QOS class configuration and manual QOS class configrations are supported.
Full list of supported protocols can be found at protocolinfo.org.
p2p protocols - Bittorrent, eDonkey (eMule, Overnet, etc.), Fasttrack (Kazaa, Morpheus, iMesh, Grokster, etc.), iMesh, Gnutella, WinMX and a lot of others.
game protocols - Battlefield 1942, Battlefield 2, Call of Duty, Counter-Strike, Doom, Half-Life, Quake, Subspace, Unreal, Wolfenstein, World of Warcraft
VoIP protocols - Google Talk, H.323, Skype, Teamspeak, SIP
other standard protocols - HTTP, FTP, BGP, DHCP, DNS, Finger, Telnet, Ident, IMAP, IPP, LPD, POP, IRC, NNTP, NTP, Rlogin, RTSP, SIP, SMTP, SNMP, SOCKS, TFTP, TLS
QOS-L7 package is compatible with Coyote Linux 2.24, BrazilFW 2.26 and probably all other Coyote Linux and BrazilFW releases based on uClibc 0.9.26. It's distributed as a standard Addon package and integrates with Coyote & BrazilFW build-in QOS support.
Main QOS L7-filter configuration
L7-filter protocol QOS classes configuration
Protocol configuration detail
QOS-L7 classes setup