From 75966c991e23b5c58257947ab5ea87a89525e0d7 Mon Sep 17 00:00:00 2001
From: nbd <nbd@3c298f89-4303-0410-b956-a3cf2f4a3e73>
Date: Fri, 18 Nov 2005 16:17:27 +0000
Subject: add layer7 patterns to iptables-mod-filter

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@2519 3c298f89-4303-0410-b956-a3cf2f4a3e73
---
 openwrt/package/iptables/files/l7/ident.pat | 14 ++++++++++++++
 1 file changed, 14 insertions(+)
 create mode 100644 openwrt/package/iptables/files/l7/ident.pat

(limited to 'openwrt/package/iptables/files/l7/ident.pat')

diff --git a/openwrt/package/iptables/files/l7/ident.pat b/openwrt/package/iptables/files/l7/ident.pat
new file mode 100644
index 000000000..672b0753c
--- /dev/null
+++ b/openwrt/package/iptables/files/l7/ident.pat
@@ -0,0 +1,14 @@
+# Ident - Identification Protocol - RFC 1413
+# Pattern quality: good veryfast
+# Usually runs on port 113
+#
+# This pattern is believed to work.  If it does not
+# work for you, or you believe it could be improved, please post to 
+# l7-filter-developers@lists.sf.net .  This list may be subscribed to at
+# http://lists.sourceforge.net/lists/listinfo/l7-filter-developers
+
+ident
+# "number , numberCRLF" possibly without the CR and/or LF.
+# ^$ is appropriate because the first packet should never have anything
+# else in it.
+^[1-9][0-9]?[0-9]?[0-9]?[0-9]?[\x09-\x0d]*,[\x09-\x0d]*[1-9][0-9]?[0-9]?[0-9]?[0-9]?(\x0d\x0a|[\x0d\x0a])?$
-- 
cgit v1.2.3