diff options
author | Fernando Fernandez Mancera <ffmancera@riseup.net> | 2018-08-03 23:47:11 +0200 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2018-08-04 00:21:19 +0200 |
commit | 9f28b685b473b2424524d0443ef1e0ed8ba276de (patch) | |
tree | 14834b9e589da013b8b058b49beaf8a2b8ceae72 /src/scanner.l | |
parent | cdb5655ee44da4113d1ee72fbd6afa6ca4ffaa14 (diff) |
src: introduce passive OS fingerprint matching
Add support for "osf" expression. Example:
table ip foo {
chain bar {
type filter hook input priority 0; policy accept;
osf name "Linux" counter packets 3 bytes 132
}
}
Signed-off-by: Fernando Fernandez Mancera <ffmancera@riseup.net>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'src/scanner.l')
-rw-r--r-- | src/scanner.l | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/src/scanner.l b/src/scanner.l index 703700fe..bce69152 100644 --- a/src/scanner.l +++ b/src/scanner.l @@ -536,6 +536,8 @@ addrstring ({macaddr}|{ip4addr}|{ip6addr}) "fib" { return FIB; } +"osf" { return OSF; } + "notrack" { return NOTRACK; } "options" { return OPTIONS; } |