- 论坛徽章:
- 0
|
用Netfilter实现对网络数据包的过滤,在NF_INET_LOCAL_OUT钩子点上同时注册IPv4和IPv6两个钩子函数,模块加载后,若单独ping 192.168.1.1等V4的地址时无异常,但是当同时ping6 ::1等IPv6的地址时就出现机器卡顿,最后毫无反映不得不断电重启,内核是3.13,钩子,注册过程如下,各位分析下为何?是不是注册的位置有问题?
static struct nf_hook_ops nfho[] =
{
{
.hook = hook_func_ipv4,
.owner = THIS_MODULE,
.pf = PF_INET,
.hooknum = NF_INET_LOCAL_OUT,
//.hooknum = NF_INET_POST_ROUTING,
.priority = NF_IP_PRI_FIRST,
},
{
.hook = hook_func_ipv6,
.owner = THIS_MODULE,
.pf = PF_INET6,
.hooknum = NF_INET_LOCAL_OUT,
.priority = NF_IP6_PRI_FIRST,
}
}; |
|
免费注册
发表于 2015-05-25 14:24