| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | IP2BIN filter convert IP address from host storage to a "binary" string which | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-03-25 | 1 | -6/+6 |
| | | | | | | | | | | | | can be use by MySQL. This is not strictly speaking raw data but it was of type RAW. Following remark from Hugo Mildenberger, I introduce in this patch a dedicated type ULOGD_RET_RAWSTR. The main reason not to use a ULOGD_RET_STRING parameter is that the paramater is not human readable. Signed-off-by: Eric Leblond <eric@inl.fr> | ||||
| * | adds AF_BRIDGE support to IP2STR | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-02-19 | 1 | -17/+71 |
| | | | | | | | This patch make the ip address string converter AF_BRIDGE compatible and add ip address ARP keys in order to make them also convert. Signed-off-by: Peter Warasin <peter@endian.com> | ||||
| * | Adds AF_BRIDGE and ARP header interpreter to BASE plugin | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-02-19 | 1 | -2/+130 |
| | | | | | | | This patch adds an AF_BRIDGE interpreter to ulogd_raw2packet_BASE plugin, which allows to log packets coming from ebtables. It also adds an ARP header decoder. Signed-off-by: Peter Warasin <peter@endian.com> | ||||
| * | revert r7369 until clarified | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-02-14 | 1 | -125/+2 |
| | | |||||
| * | Adds AF_BRIDGE and ARP header interpreter to BASE plugin | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-02-14 | 1 | -2/+125 |
| | | | | | | | | | | This patch adds an AF_BRIDGE interpreter to ulogd_raw2packet_BASE plugin, which allows to log packets coming from ebtables. It also adds an ARP header decoder. Signed-off-by: Peter Warasin <peter@endian.com> | ||||
| * | Adds input key enumeration in order to address the fields | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-02-14 | 1 | -4/+12 |
| | | | | | | | | with symbols instead of numbers. Shortens the lines by the use of GET_VALUE() Signed-off-by: Peter Warasin <peter@endian.com> | ||||
| * | revert r7348 | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-02-10 | 1 | -23/+9 |
| | | |||||
| * | From: Eric Leblond <eric@inl.fr> | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-02-09 | 2 | -10/+0 |
| | | | | | | | | Some macros were defined several time. This was the case of GET_VALUE, pp_is_valid. This patch puts the definition in ulogd.h and fixes the definition of pp_is_valid which was wrong (causing segfault by acessing to fields at NULL). | ||||
| * | From: Eric Leblond <eric@inl.fr>: | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-02-09 | 1 | -9/+23 |
| | | | | | | | | | | | | | When using NFLOG or ULOG, obb.family (protocol IPv4 or IPv6) has to be setup manually in ulogd.conf configuration file. This is used by the BASE filter to properly parse the packet. This patch suppress oob.family as output keys of NFLOG and ULOG and let the BASE filter determine the family of the packet by itself (by parsing the raw header). A good side effect is to be able to log in IPv6 and IPv4 in the same group. Before that, two loggers have to be setup separatly. | ||||
| * | From Eric Leblond <eric@inl.fr>: | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-02-07 | 6 | -589/+46 |
| | | | | | | | | This patch modify ulogd_filter_IFINDEX to use libnfnetlink for index to interface name mapping instead of using local version. This requires at least libnfnetlink 0.0.30. This dependancy is checked in configure (thanks to Sebastien Tricaud for his patch). | ||||
| * | From: Eric leblond <eric@inl.fr> | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-02-03 | 1 | -0/+4 |
| | | | | | | With this patch, BASE filter module is able fill oob_family when parsing IPv6 address. | ||||
| * | From: Eric leblond <eric@inl.fr> | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-02-03 | 1 | -0/+2 |
| | | | | | Fix a bug in IPv4 output of IP2BIN module. | ||||
| * | From: Eric Leblond <eric@inl.fr> | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-02-03 | 1 | -5/+2 |
| | | | | | Fix description and indenting (cleanups) | ||||
| * | From: Eric leblond <eric@inl.fr> | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-02-03 | 2 | -1/+220 |
| | | | | | | This module convert IP from internal notation to a string in binary notation which is used by the MySQL output plugin. | ||||
| * | From: Eric leblond <eric@inl.fr> | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-02-03 | 1 | -24/+4 |
| | | | | | | - This patch suppress key relative to IPv6 address because IPv4 and IPv6 can be stored in the same key. - Add missing IP2STR line to ulogd.conf.in | ||||
| * | From: Eric leblond <eric@inl.fr> | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-02-03 | 2 | -1/+190 |
| | | | | | This module is a generic module which is used to convert an IP from internal representation to string representation. This is a task needed by several modules like printpkt or pgsql. This module factorizes the code. | ||||
| * | From: Eric Leblond <eric@inl.fr>: | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-02-03 | 1 | -2/+2 |
| | | | | | | Put O at the real end of the string. Based on Marius Tomaschewski work. | ||||
| * | From: Eric Leblond <eric@inl.fr>: | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-02-03 | 1 | -0/+1 |
| | | | | | | Added explicit null termination of the hostname buffer This patch is a backport of Marius Tomaschewski <mt@suse.de> work on ulogd. | ||||
| * | Add IPv6 support, fix a few incorrect key assignments and make sure this doesn't | /C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=kaber/emailAddress=kaber@netfilter.org | 2007-03-06 | 1 | -189/+514 |
| | | | | | | repeat by using symbolic names to make sure the assignment matches the array index. | ||||
| * | Add a printflow plugin is similar to the PRINTPKT plugin, but for flows. It's | /C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=laforge/emailAddress=laforge@netfilter.org | 2006-05-23 | 2 | -1/+70 |
| | | | | | output is compatible with the SYSLOG and LOGEMU plugins. (Philip Craig) | ||||
| * | Move the printpkt functionality out of SYSLOG and LOGEMU, and into | /C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=laforge/emailAddress=laforge@netfilter.org | 2006-05-23 | 2 | -1/+71 |
| | | | | | | a separate PRINTPKT plugin. This reduces code duplication, and also makes the SYSLOG and LOGEMU plugins more general. (Philip Craig) | ||||
| * | rtnl.c warning fix (Christian Hentschel) | /C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=laforge/emailAddress=laforge@netfilter.org | 2006-01-12 | 1 | -1/+1 |
| | | |||||
| * | now 'make dist-bzip2' finally works | /C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=laforge/emailAddress=laforge@netfilter.org | 2006-01-08 | 1 | -0/+2 |
| | | |||||
| * | some plugins support packet and flow data types | laforge | 2005-11-20 | 1 | -2/+2 |
| | | |||||
| * | make 'num_keys' an attribute of pluginstance instead of plugin | laforge | 2005-11-20 | 3 | -17/+22 |
| | | |||||
| * | introduce version field for plugins, refuse loading plugins with different ↵ | laforge | 2005-11-05 | 3 | -0/+3 |
| | | | | | version | ||||
| * | finish port of PWSNIF plugin | laforge | 2005-11-05 | 2 | -30/+29 |
| | | |||||
| * | move to filter dir | laforge | 2005-11-05 | 1 | -0/+0 |
| | | |||||
| * | port PWSNIFF | laforge | 2005-11-05 | 1 | -32/+55 |
| | | |||||
| * | add more ipfix related information to raw2packet_BASE | laforge | 2005-11-04 | 1 | -8/+77 |
| | | |||||
| * | don't return '*', but an empty string in case no interface is found | laforge | 2005-11-04 | 1 | -1/+1 |
| | | |||||
| * | implement ifindex to interface name filter plugin | laforge | 2005-11-04 | 6 | -3/+626 |
| | | |||||
| * | all protocols now merged into one plugin | laforge | 2005-10-03 | 1 | -146/+180 |
| | | |||||
| * | this is a packet/packet filter | laforge | 2005-10-03 | 1 | -1/+1 |
| | | |||||
| * | add skeleton of ifindex->interfacename plugin | laforge | 2005-10-03 | 2 | -0/+82 |
| | | |||||
| * | revive BASE plugin | laforge | 2005-10-03 | 2 | -20/+20 |
| | | |||||
| * | first step towards automake | laforge | 2005-10-02 | 4 | -30/+1 |
| | | |||||
| * | make BASE plugin compile (not fully ported yet) | laforge | 2005-04-17 | 1 | -54/+69 |
| | | |||||
| * | current working state (doesn't compile yet) | laforge | 2005-04-17 | 1 | -3/+4 |
| | | |||||
| * | add makefiles for subdirs | laforge | 2005-04-17 | 1 | -0/+30 |
| | | |||||
| * | commit my latest changes from Ottawa (July 2004) | laforge | 2004-08-22 | 1 | -9/+32 |
| | | |||||
| * | sume of the BASE stuff (the part dealing with OOB) doesn't belong in a ↵ | laforge | 2004-07-24 | 1 | -129/+0 |
| | | | | | generic packet interpreter but is rather specific to the ULOG input plugin. | ||||
| * | merge ulogd-1 fix for TOS byte (Rich Bartell) | laforge | 2004-07-23 | 1 | -1/+1 |
| | | |||||
| * | - add ipfix field types | laforge | 2004-07-23 | 1 | -66/+182 |
| | | | | | - add new "raw.pktcount" field | ||||
| * | move libulog specific code to ulogd_inppkt_ULOG.c | laforge | 2004-07-23 | 1 | -0/+100 |
| | | | | | move ulogd_LOCAL.c to ulogd_raw2packet_LOCAL.c | ||||
| * | further tree reorganization | laforge | 2004-07-23 | 2 | -0/+601 |
 |
index : ulogd2 | |
| ulogd2 tree | eric@netfilter.org |
| summaryrefslogtreecommitdiffstats |