PATCH: wired eapol receive/send
kleinveld at pacific.net.sg
Wed Sep 8 20:59:13 EDT 2004
I have written a quick and dirty solution to insert and remove rules using
iptables. Instead of doing an exec you can use integrate iptables.c in your
program. Iptables.c is a small program that passes the commands as given on
commandline to the iptables core programs. I don't think what I made is a nice
solution but it works and without doing a exec. There must be better ways to do
this. If you're interrested I will send you the code.
Gunter Burchardt wrote:
>>Ebtables is a good way to do this - it already has everything you need
>>in the kernel. Set it up to pass frames to userspace by default, and as
>>you see new MAC addresses add a new rule to not pass that frame up.
> Sounds like a good idea. Now you have to write QUEUE target for
> ebtables and a api for ebtables. There is no api for iptables too.
> Adding/Deleting rules by exec could be very slow.
> Why no generic ieee802.1x module?
> HostAP mailing list
> HostAP at shmoo.com
More information about the HostAP