英文:
Changing destination port using gopacket
问题
我目前正在尝试使用nfqueue读取数据包并对其进行修改。不幸的是,我在更改数据包的目标端口方面遇到了一些困难。请参考下面的代码片段。我的想法是将目标端口从8888改写为8000。
我确实看到修改后的数据包从队列中发送出去,但是如果我想通过连接到端口8888来连接到监听在端口8000上的HTTP服务器,连接会超时。我猜测数据包中有一些格式错误。
package mainimport ("os""os/signal""syscall""github.com/chifflier/nfqueue-go/nfqueue""github.com/coreos/go-iptables/iptables""github.com/google/gopacket""github.com/google/gopacket/layers")func sendNewPacket(payload *nfqueue.Payload, layers ...gopacket.SerializableLayer) {buffer := gopacket.NewSerializeBuffer()gopacket.SerializeLayers(buffer, gopacket.SerializeOptions{FixLengths: true, ComputeChecksums: true}, layers...)outgoingPacket := buffer.Bytes()payload.SetVerdictModified(nfqueue.NF_ACCEPT, outgoingPacket)}func realCallback(payload *nfqueue.Payload) int {packet := gopacket.NewPacket(payload.Data, layers.LayerTypeIPv4, gopacket.Default)ethLayer := packet.Layer(layers.LayerTypeEthernet)eth, _ := ethLayer.(*layers.Ethernet)if ipLayer := packet.Layer(layers.LayerTypeIPv4); ipLayer != nil {ip, _ := ipLayer.(*layers.IPv4)if tcpLayer := packet.Layer(layers.LayerTypeTCP); tcpLayer != nil {tcp, _ := tcpLayer.(*layers.TCP)if tcp.DstPort == 8888 {tcp.DstPort = 8000sendNewPacket(payload, eth, ip, tcp)return 0}if tcp.SrcPort == 8000 {tcp.SrcPort = 8888sendNewPacket(payload, eth, ip, tcp)return 0}}}payload.SetVerdict(nfqueue.NF_ACCEPT)return 0}func main() {ipt, err := iptables.New()if err != nil {panic(err)}ipt.Append("filter", "INPUT", "-p", "tcp", "-j", "NFQUEUE", "--queue-num", "0")ipt.Append("filter", "OUTPUT", "-p", "tcp", "-j", "NFQUEUE", "--queue-num", "0")q := new(nfqueue.Queue)q.SetCallback(realCallback)q.Init()defer q.Close()q.Unbind(syscall.AF_INET)q.Bind(syscall.AF_INET)q.CreateQueue(0)c := make(chan os.Signal, 1)signal.Notify(c, os.Interrupt)go func() {for sig := range c {_ = sigq.Close()err = ipt.ClearChain("filter", "INPUT")err = ipt.ClearChain("filter", "OUTPUT")if err != nil {panic(err)}os.Exit(0)}}()q.TryRun()}
英文:
I'm currently playing around with reading packages from nfqueue and modifying them.Unfortunately, I'm a bit stuck at changing the destination port of a package. See the code snippet below. Idea is to rewrite dest port 8888 to 8000.
I do see the modified package going out from the queue, but if I want to connect to an HTTP server listening on port 8000 by connecting to port 8888, the connection times out. I assume something mal-formed in the package.
package mainimport ("os""os/signal""syscall""github.com/chifflier/nfqueue-go/nfqueue""github.com/coreos/go-iptables/iptables""github.com/google/gopacket""github.com/google/gopacket/layers")func sendNewPacket(payload *nfqueue.Payload, layers ...gopacket.SerializableLayer) {buffer := gopacket.NewSerializeBuffer()gopacket.SerializeLayers(buffer, gopacket.SerializeOptions{FixLengths: true, ComputeChecksums: true}, layers...)outgoingPacket := buffer.Bytes()payload.SetVerdictModified(nfqueue.NF_ACCEPT, outgoingPacket)}func realCallback(payload *nfqueue.Payload) int {packet := gopacket.NewPacket(payload.Data, layers.LayerTypeIPv4, gopacket.Default)ethLayer := packet.Layer(layers.LayerTypeEthernet)eth, _ := ethLayer.(*layers.Ethernet)if ipLayer := packet.Layer(layers.LayerTypeIPv4); ipLayer != nil {ip, _ := ipLayer.(*layers.IPv4)if tcpLayer := packet.Layer(layers.LayerTypeTCP); tcpLayer != nil {tcp, _ := tcpLayer.(*layers.TCP)if tcp.DstPort == 8888 {tcp.DstPort = 8000sendNewPacket(payload, eth, ip, tcp)return 0}if tcp.SrcPort == 8000 {tcp.SrcPort = 8888sendNewPacket(payload, eth, ip, tcp)return 0}}}payload.SetVerdict(nfqueue.NF_ACCEPT)return 0}func main() {ipt, err := iptables.New()if err != nil {panic(err)}ipt.Append("filter", "INPUT", "-p", "tcp", "-j", "NFQUEUE", "--queue-num", "0")ipt.Append("filter", "OUTPUT", "-p", "tcp", "-j", "NFQUEUE", "--queue-num", "0")q := new(nfqueue.Queue)q.SetCallback(realCallback)q.Init()defer q.Close()q.Unbind(syscall.AF_INET)q.Bind(syscall.AF_INET)q.CreateQueue(0)c := make(chan os.Signal, 1)signal.Notify(c, os.Interrupt)go func() {for sig := range c {_ = sigq.Close()err = ipt.ClearChain("filter", "INPUT")err = ipt.ClearChain("filter", "OUTPUT")if err != nil {panic(err)}os.Exit(0)}}()q.TryRun()}
答案1
得分: 0
如果你对解决方案感兴趣,可以在这里找到代码:https://github.com/kung-foo/freki
英文:
In case you are interested in the solution, code can be found here: https://github.com/kung-foo/freki
通过集体智慧和协作来改善编程学习和解决问题的方式。致力于成为全球开发者共同参与的知识库,让每个人都能够通过互相帮助和分享经验来进步。
评论