Netfilter queue packet/nfqueue¶

Description¶

This module uses the library netfilter queue to capture packets from a given network interface.

This module will install iptable rules in the raw table during its initialization . The table will be cleared when the application terminates.

When using this module, haka needs to be run with the appropriate permissions.

Parameters¶

interfaces

Comma-separated list of interfaces or the any keyword.

Example :

# Capture loopback traffic
interfaces = "lo"
# Capture on interface eth1 and eth2
# interfaces = "eth1, eth2"
# Capture on all interfaces
# interfaces = "any"

dump=[yes|no]: Enable dumping feature.

dump_input=`file`: Save all received packets to a pcap file.

dump_output=`file`: Save packets that were accepted to to a pcap file.

dump_drop=`file`

Save packets that were dropped to to a pcap file.

Example :

dump = true
dump_input = "/tmp/input.pcap"
dump_drop = "/tmp/drop.pcap"

Haka

Software Defined Security

Netfilter queue packet/nfqueue¶

Description¶

Parameters¶