Skip to content

vel21ripn/ipt_tcpbreak

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
iptables
iptables
 
 
kernel
kernel
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 

Repository files navigation

ipt_tcpbreak

Break TCP-connect (linux netfilter target extension)

Sending optional string to client, send tcp-reset to client, send tcp-reset to server and break conntrack connection.

The minimum requirements for the kernel configuration CONFIG_NF_CONNTRACK=m or y

Developed for kernel 4.X (tested on 4.8.6, 4.4.x, 3.18.44)

Example:

 # iptables -A FORWARD -m state --state INVALID -j DROP
 # iptables -A FORWARD -p tcp --dport 8080 -m string --string "GET " --algo bm -j TCPBREAK --http302 'http://localhost/'
 # iptables -A INPUT -m state --state INVALID -j DROP
 # iptables -A INPUT -p tcp --dport 8080 -m string --string "GET " --algo bm -j TCPBREAK --http302 'http://localhost/'
 # iptables -A INPUT -p tcp --dport 25 -m string --string "ehlo" --algo bm -j TCPBREAK --raw 'quit\r\n'

About

Break TCP-connect. Linux netfilter target extension

Topics

c linux netfilter ipt-tcpbreak

Resources

Readme

License

GPL-3.0 license
Activity

Stars

2 stars

Watchers

3 watching

Forks

4 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages