tags:

views:

147

answers:

2
+1  Q: 

How to modify struct sk_buff

I have to write a vpn module. First of all, I have wrote a kernel module that modifies all the incoming and outgoing TCP packets. It uses netfilter hooks. For the incoming packets, I have modified the bytes between (struct sk_buff)->data and (struct sk_buff)->tail pointers by incrementing them by one. For the outgoing packets, I have modified the bytes between (struct sk_buff)->data and (struct sk_buff)->tail pointers by decrementing them by one.

However, I tried to establish a TCP connection between localhost and localhost (by means of netcat) and I had not succeeded. Can you tell me what I am doing wrong? Need I modify some other fields from the struct sk_buff structure?

A: 

Is it possible to implement my simple vpn module only from kernel space?(thus without using special libraies such as libnetfilter_queue)?

Thank you.

 2010-01-03 21:29:24
+1  A: 

Yes, you can do this without using libnetfilter. But given the limited information that you've provided about your project it's hard to give a good recommendation as to how to go about fixing your issue. Here's some references that should help.

1) I would recommend you take a look at the TUN/TAP interface driver APIs. This will allow you to implement your code in application space rather than kernel. See openvpn for a great example of this type of VPN.

If you're interested in doing more advanced kernel space hooking...
2) Check this article out on hooking into netfilter netfilter kernel hooks

Steve Lazaridis  2010-01-27 18:23:18

related questions

How to build a tunnel for file transfer between distant windows 2003 machines quickly
Does Wippien use a direct connection?
Webbased or Thick-client through VPN?
Check if access to a remote machine uses Wireless LAN
Capturing VPN usage statistics
Cisco VPN Client Version 4.8
Programatially determine if Cisco VPN Client is connected
TFS over VPN connection - is there a way to save the userid/password on client?
Duplicate ip in vpn tunnel both sites
MSDTC communication fails over VPN
Virtual guest not bridging to the host's VPN connection in VMware Server
How can I programmatically create a Windows VPN connection?
Can the built in VPN client "Connect to Workplace" in Vista home connect to a Cisco router?
Can I do SQL Server 2005 merge replication through an SSH tunnel?
Can't find windows share despite having connected VPN
Windows VPN connection ports.
Windows Server 2008 SSTP VPN in a Non-Domain Environment?
Copying databases to remote locations
How to access a PCMCIA modem's serial number?
DHCP overwrites Cisco VPN resolv.conf on Linux
Using VM to get around VPN restrictions
Easiest way to provide VPN access easily for all client OSes?
.NET Remoting Speed and VPNs
Using Xming X Window Server over a VPN
OpenVPN Config file to prevent timeout