L7 - when it will be back in marketplace?

Forums

Add a reply View Replies (7) →

Adam

Offline

L7 - when it will be back in marketplace?

Resolved

0 votes

Hi, the one reason why i want to use clearos is L7 filtering. When is duedate for returning L7 filtering back please?

In Protocol Filtering

Friday, November 01 2013, 03:17 PM

Share this post:

Responses (7)

Accepted Answer

Legacy Disabled

Offline

Friday, October 30 2015, 02:00 PM - #Permalink

Resolved

0 votes

An old thread is revived :-)

l7-filter is getting replaced by a new daemon tentatively named cdpid (ClearOS Deep Packet Inspection Daemon). It pulls in the nDPI library for much improved protocol detection. We'll have more details coming out in November and expect to see something released in the very early part of 2016.

The software is already in alpha -- here's some debug output from my home network this morning.



# DNS lookups caught on the wire

ens34: DNS.Facebook: 192.168.4.1:53 <-> 192.168.4.156:61943 [Host: www.facebook.com] [SSL/C: N/A] [SSL/S: N/A]

ens34: DNS.Facebook: 192.168.4.1:53 <-> 192.168.4.156:57168 [Host: scontent-yyz1-1.xx.fbcdn.net] [SSL/C: N/A] [SSL/S: N/A]



# Pulling out SSL certificate information during HTTPS handshake (will make it possible to block SSL sites transparently)

ens34: SSL.Facebook: 31.13.74.1:443 <-> 192.168.4.156:54615 [Host: N/A] [SSL/C: www.facebook.com] [SSL/S: N/A]

ens34: SSL.Facebook: 31.13.80.12:443 <-> 192.168.4.156:54616 [Host: N/A] [SSL/C: scontent-yyz1-1.xx.fbcdn.net] [SSL/S: N/A]



# Who's playing Candy Crush in the middle of the day?

ens34: DNS: 192.168.4.1:53 <-> 192.168.4.184:41614 [Host: candycrushsodamobile.king.com] [SSL/C: N/A] [SSL/S: N/A]

ens34: HTTP: 185.48.81.172:80 <-> 192.168.4.184:58182 [Host: candycrushsodamobile.king.com] [SSL/C: N/A] [SSL/S: N/A]



# Bittorrent (encrypted)

ens32: BitTorrent: 89.212.120.77:36269 <-> 192.0.172.199:51413 [Host: N/A] [SSL/C: N/A] [SSL/S: N/A]

ens32: BitTorrent: 32.214.157.239:61568 <-> 192.0.172.199:51413 [Host: N/A] [SSL/C: N/A] [SSL/S: N/A]

ens32: BitTorrent: 47.55.64.199:13664 <-> 192.0.172.199:51413 [Host: N/A] [SSL/C: N/A] [SSL/S: N/A]

The reply is currently minimized Show

Accepted Answer

Bianca & Werner

Offline
Monday, December 01 2014, 01:15 PM - #Permalink
Resolved

0 votes

Hi guys

Just wanted to know what the status of the protocol filter is? Need to find a good way to block P2P traffic
The reply is currently minimized Show
Accepted Answer
Legacy Disabled

Offline
Wednesday, August 13 2014, 01:58 AM - #Permalink
Resolved

0 votes

Every time we restart the l7-filter project, something comes along and derails it. It definitely has a Duke Nukem Forever kind of vibe.
The reply is currently minimized Show
Accepted Answer

bendolmorlom

Offline
Tuesday, August 12 2014, 11:36 PM - #Permalink
Resolved

0 votes

using transparent proxy wont work
The reply is currently minimized Show
Accepted Answer
t1ck3ts

Offline
Monday, January 06 2014, 09:37 AM - #Permalink
Resolved

0 votes

Dirk Albring wrote:

Are you referring to the protocol filter? It's running on my ClearOS 6.4 box.

How did you get it running? and are you using the transparent proxy at the same time?
The reply is currently minimized Show
Accepted Answer
Legacy Disabled

Offline
Wednesday, November 20 2013, 04:13 PM - #Permalink
Resolved

0 votes

An l7-filter rewrite is slowly getting off the ground. Release dates haven't been set.
The reply is currently minimized Show
Accepted Answer
Dirk Albring

Offline
Tuesday, November 19 2013, 04:38 AM - #Permalink
Resolved

0 votes

Are you referring to the protocol filter? It's running on my ClearOS 6.4 box.
The reply is currently minimized Show