1
0
mirror of git://projects.qi-hardware.com/openwrt-xburst.git synced 2024-11-27 22:53:09 +02:00

[iptables] Update layer7 rules

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@15544 3c298f89-4303-0410-b956-a3cf2f4a3e73
This commit is contained in:
hauke 2009-05-01 15:20:34 +00:00
parent d977ccf668
commit 398b94811b
16 changed files with 20 additions and 7 deletions

View File

@ -2,6 +2,7 @@
# Pattern attributes: good slow notsofast # Pattern attributes: good slow notsofast
# Protocol groups: chat proprietary # Protocol groups: chat proprietary
# Wiki: http://www.protocolinfo.org/wiki/AIM # Wiki: http://www.protocolinfo.org/wiki/AIM
# Copyright (C) 2008 Matthew Strait, Ethan Sommer; See ../LICENSE
# #
# Usually runs on port 5190 # Usually runs on port 5190
# #

View File

@ -1,12 +1,12 @@
# Bittorrent - P2P filesharing / publishing tool - http://www.bittorrent.com # Bittorrent - P2P filesharing / publishing tool - http://www.bittorrent.com
# Pattern attributes: good slow notsofast undermatch # Pattern attributes: good slow594 notsofast undermatch
# Protocol groups: p2p open_source # Protocol groups: p2p open_source
# Wiki: http://www.protocolinfo.org/wiki/Bittorrent # Wiki: http://www.protocolinfo.org/wiki/Bittorrent
# Copyright (C) 2008 Matthew Strait, Ethan Sommer; See ../LICENSE
# #
# This pattern has been tested and is believed to work well. # This pattern has been tested and is believed to work well.
# It will, however, not work on bittorrent streams that are encrypted, since # It will, however, not work on bittorrent streams that are encrypted, since
# it's impossible to match encrypted data (unless the encryption is extremely # it's impossible to match (well) encrypted data.
# weak, like rot13 or something...).
bittorrent bittorrent
@ -16,12 +16,10 @@ bittorrent
# Next bit matches something Azureus does # Next bit matches something Azureus does
# Ditto on the next bit. Could also match on "user-agent: azureus", but that's in the next # Ditto on the next bit. Could also match on "user-agent: azureus", but that's in the next
# packet and perhaps this will match multiple clients. # packet and perhaps this will match multiple clients.
# bitcomet-specific strings contributed by liangjun.
# Recently the ^ was removed from before \x13. I think this was an accident,
# so I have restored it.
# This is not a valid GNU basic regular expression (but that's ok). # This is not a valid GNU basic regular expression (but that's ok).
^(\x13bittorrent protocol|azver\x01$|get /scrape\?info_hash=)|d1:ad2:id20:|\x08'7P\)[RP] ^(\x13bittorrent protocol|azver\x01$|get /scrape\?info_hash=get /announce\?info_hash=|get /client/bitcomet/|GET /data\?fid=)|d1:ad2:id20:|\x08'7P\)[RP]
# This pattern is "fast", but won't catch as much # This pattern is "fast", but won't catch as much
#^(\x13bittorrent protocol|azver\x01$|get /scrape\?info_hash=) #^(\x13bittorrent protocol|azver\x01$|get /scrape\?info_hash=)

View File

@ -2,6 +2,7 @@
# Pattern attributes: good veryfast fast overmatch # Pattern attributes: good veryfast fast overmatch
# Protocol groups: p2p # Protocol groups: p2p
# Wiki: http://www.protocolinfo.org/wiki/EDonkey # Wiki: http://www.protocolinfo.org/wiki/EDonkey
# Copyright (C) 2008 Matthew Strait, Ethan Sommer; See ../LICENSE
# #
# Tested recently (April/May 2006) with eMule 0.47a and eDonkey2000 1.4 # Tested recently (April/May 2006) with eMule 0.47a and eDonkey2000 1.4
# and a long time ago with something else. # and a long time ago with something else.

View File

@ -2,6 +2,7 @@
# Pattern attributes: good slow notsofast # Pattern attributes: good slow notsofast
# Protocol groups: p2p # Protocol groups: p2p
# Wiki: http://www.protocolinfo.org/wiki/Fasttrack # Wiki: http://www.protocolinfo.org/wiki/Fasttrack
# Copyright (C) 2008 Matthew Strait, Ethan Sommer; See ../LICENSE
# #
# Tested with Kazaa Lite Resurrection 0.0.7.6F # Tested with Kazaa Lite Resurrection 0.0.7.6F
# #

View File

@ -2,6 +2,7 @@
# Pattern attributes: great notsofast fast # Pattern attributes: great notsofast fast
# Protocol groups: document_retrieval ietf_internet_standard # Protocol groups: document_retrieval ietf_internet_standard
# Wiki: http://protocolinfo.org/wiki/FTP # Wiki: http://protocolinfo.org/wiki/FTP
# Copyright (C) 2008 Matthew Strait, Ethan Sommer; See ../LICENSE
# #
# Usually runs on port 21. Note that the data stream is on a dynamically # Usually runs on port 21. Note that the data stream is on a dynamically
# assigned port, which means that you will need the FTP connection # assigned port, which means that you will need the FTP connection

View File

@ -2,6 +2,7 @@
# Pattern attributes: good notsofast notsofast # Pattern attributes: good notsofast notsofast
# Protocol groups: p2p open_source # Protocol groups: p2p open_source
# Wiki: http://www.protocolinfo.org/wiki/Gnutella # Wiki: http://www.protocolinfo.org/wiki/Gnutella
# Copyright (C) 2008 Matthew Strait, Ethan Sommer; See ../LICENSE
# #
# This should match both Gnutella and "Gnutella2" ("Mike's protocol") # This should match both Gnutella and "Gnutella2" ("Mike's protocol")
# #

View File

@ -2,6 +2,7 @@
# Pattern attributes: great slow notsofast superset # Pattern attributes: great slow notsofast superset
# Protocol groups: document_retrieval ietf_draft_standard # Protocol groups: document_retrieval ietf_draft_standard
# Wiki: http://protocolinfo.org/wiki/HTTP # Wiki: http://protocolinfo.org/wiki/HTTP
# Copyright (C) 2008 Matthew Strait, Ethan Sommer; See ../LICENSE
# #
# Usually runs on port 80 # Usually runs on port 80
# #

View File

@ -2,6 +2,7 @@
# Pattern attributes: good fast fast # Pattern attributes: good fast fast
# Protocol groups: networking ietf_proposed_standard # Protocol groups: networking ietf_proposed_standard
# Wiki: http://www.protocolinfo.org/wiki/Ident # Wiki: http://www.protocolinfo.org/wiki/Ident
# Copyright (C) 2008 Matthew Strait, Ethan Sommer; See ../LICENSE
# #
# Usually runs on port 113 # Usually runs on port 113
# #

View File

@ -2,6 +2,7 @@
# Pattern attributes: great veryfast fast # Pattern attributes: great veryfast fast
# Protocol groups: chat ietf_proposed_standard # Protocol groups: chat ietf_proposed_standard
# Wiki: http://www.protocolinfo.org/wiki/IRC # Wiki: http://www.protocolinfo.org/wiki/IRC
# Copyright (C) 2008 Matthew Strait, Ethan Sommer; See ../LICENSE
# #
# Usually runs on port 6666 or 6667 # Usually runs on port 6666 or 6667
# Note that chat traffic runs on these ports, but IRC-DCC traffic (which # Note that chat traffic runs on these ports, but IRC-DCC traffic (which

View File

@ -2,6 +2,7 @@
# Pattern attributes: good notsofast notsofast # Pattern attributes: good notsofast notsofast
# Protocol groups: chat ietf_proposed_standard # Protocol groups: chat ietf_proposed_standard
# Wiki: http://www.protocolinfo.org/wiki/Jabber # Wiki: http://www.protocolinfo.org/wiki/Jabber
# Copyright (C) 2008 Matthew Strait, Ethan Sommer; See ../LICENSE
# #
# This pattern has been tested with Gaim and Gabber. It is only tested # This pattern has been tested with Gaim and Gabber. It is only tested
# with non-SSL mode Jabber with no proxies. # with non-SSL mode Jabber with no proxies.

View File

@ -2,6 +2,7 @@
# Pattern attributes: good slow notsofast # Pattern attributes: good slow notsofast
# Protocol groups: chat proprietary # Protocol groups: chat proprietary
# Wiki: http://www.protocolinfo.org/wiki/MSN_Messenger # Wiki: http://www.protocolinfo.org/wiki/MSN_Messenger
# Copyright (C) 2008 Matthew Strait, Ethan Sommer; See ../LICENSE
# #
# Usually uses TCP port 1863 # Usually uses TCP port 1863
# http://www.hypothetic.org/docs/msn/index.php # http://www.hypothetic.org/docs/msn/index.php

View File

@ -2,6 +2,7 @@
# Pattern attributes: good fast fast overmatch # Pattern attributes: good fast fast overmatch
# Protocol groups: time_synchronization ietf_draft_standard # Protocol groups: time_synchronization ietf_draft_standard
# Wiki: http://www.protocolinfo.org/wiki/NTP # Wiki: http://www.protocolinfo.org/wiki/NTP
# Copyright (C) 2008 Matthew Strait, Ethan Sommer; See ../LICENSE
# #
# This pattern is tested and is believed to work. # This pattern is tested and is believed to work.

View File

@ -2,6 +2,7 @@
# Pattern attributes: great veryfast fast # Pattern attributes: great veryfast fast
# Protocol groups: mail ietf_internet_standard # Protocol groups: mail ietf_internet_standard
# Wiki: http://www.protocolinfo.org/wiki/POP # Wiki: http://www.protocolinfo.org/wiki/POP
# Copyright (C) 2008 Matthew Strait, Ethan Sommer; See ../LICENSE
# #
# This pattern has been tested somewhat. # This pattern has been tested somewhat.

View File

@ -2,6 +2,7 @@
# Pattern attributes: great notsofast fast # Pattern attributes: great notsofast fast
# Protocol groups: mail ietf_internet_standard # Protocol groups: mail ietf_internet_standard
# Wiki: http://www.protocolinfo.org/wiki/SMTP # Wiki: http://www.protocolinfo.org/wiki/SMTP
# Copyright (C) 2008 Matthew Strait, Ethan Sommer; See ../LICENSE
# #
# usually runs on port 25 # usually runs on port 25
# #

View File

@ -2,6 +2,7 @@
# Pattern attributes: good notsofast fast superset # Pattern attributes: good notsofast fast superset
# Protocol groups: secure ietf_proposed_standard # Protocol groups: secure ietf_proposed_standard
# Wiki: http://www.protocolinfo.org/wiki/SSL # Wiki: http://www.protocolinfo.org/wiki/SSL
# Copyright (C) 2008 Matthew Strait, Ethan Sommer; See ../LICENSE
# #
# Usually runs on port 443 # Usually runs on port 443
# #

View File

@ -2,6 +2,7 @@
# Pattern attributes: great veryfast fast # Pattern attributes: great veryfast fast
# Protocol groups: remote_access # Protocol groups: remote_access
# Wiki: http://www.protocolinfo.org/wiki/VNC # Wiki: http://www.protocolinfo.org/wiki/VNC
# Copyright (C) 2008 Matthew Strait, Ethan Sommer; See ../LICENSE
# #
# http://www.realvnc.com/documentation.html # http://www.realvnc.com/documentation.html
# #