1. Moved misplaced code that was causing kernel oops in reset mode.
2. Added payload size calc to honeypot mode, so ack sequence may ACK
the length of client's sent payload packets correctly.
3. Modified TTL for honeypot mode so we look more like a Windows
machine.
Honeypot mode attempts to maintain a normal connection for the purpose
of capturing payload packets.
Reset mode provides the ability to send a reset packet in lieu of
using the DROP or REJECT targets.
xt_TEE.c:54:19: error: request for member "dst" in something not a
structure or union
xt_TEE.c:55:20: error: "struct rtable" has no member named "u"
Linux kernel commit v2.6.36-rc1~571^2~616 changed this.
The extension modules use the API of a fairly recent kernel, if not
even the networking git tree. To make it work with older Linux
kernels, an API wrapper is added. Should compile against
running-kernels Linux 2.6.19..current (tested: 2.6.22..current).
Signed-off-by: Jan Engelhardt <jengelh@computergmbh.de>
Populate the iptables-addons repository with two modules, xt_TARPIT
and xt_TEE, as a starting point.
Signed-off-by: Jan Engelhardt <jengelh@computergmbh.de>
