diff options
author | Waldemar Brodkorb <wbx@openadk.org> | 2009-12-01 19:40:13 +0100 |
---|---|---|
committer | Waldemar Brodkorb <wbx@openadk.org> | 2009-12-01 19:40:13 +0100 |
commit | eb10ac0e97c1e5e98ce73a1966c97a7cedb9d086 (patch) | |
tree | f25892b4f15ef322487a2b00d674c255d148539c /package/iptables/files/l7/http.pat | |
parent | b3a54c520195f3cab1109cb90de8179e4dff433f (diff) |
use pkill for startup scripts
- seems to solve the issue, that the same init script
get killed otherwise
- fine tune dansguardian, squid and iptables package
- add default firewall config file (from freewrt)
- add an example for transparent proxy via an ethernet bridge
Diffstat (limited to 'package/iptables/files/l7/http.pat')
-rw-r--r-- | package/iptables/files/l7/http.pat | 28 |
1 files changed, 0 insertions, 28 deletions
diff --git a/package/iptables/files/l7/http.pat b/package/iptables/files/l7/http.pat deleted file mode 100644 index 520e7fe21..000000000 --- a/package/iptables/files/l7/http.pat +++ /dev/null @@ -1,28 +0,0 @@ -# HTTP - HyperText Transfer Protocol - RFC 2616 -# Pattern quality: great notsofast -# Usually runs on port 80 -# -# This pattern has been tested and is believed to work well. If it does not -# work for you, or you believe it could be improved, please post to -# l7-filter-developers@lists.sf.net . This list may be subscribed to at -# http://lists.sourceforge.net/lists/listinfo/l7-filter-developers -# -# this intentionally catches the response from the server -# rather than the request so that other protocols which use -# http (like kazaa) can be caught based on specific http requests -# regardless of the ordering of filters... -# also matches posts - -# Sites that serve really long cookies may break this by pushing the -# server response too far away from the beginning of the connection. To -# fix this, increase the kernel's data buffer length. - -http -# Status-Line = HTTP-Version SP Status-Code SP Reason-Phrase CRLF (rfc 2616) -# As specified in rfc 2616 a status code is preceeded and followed by a -# space. -http/(0\.9|1\.0|1\.1) [1-5][0-9][0-9] [\x09-\x0d -~]*(connection:|content-type:|content-length:|date:)|post [\x09-\x0d -~]* http/[01]\.[019] -# A slightly faster version that might be good enough: -#http/(0\.9|1\.0|1\.1) [1-5][0-9][0-9]|post [\x09-\x0d -~]* http/[01]\.[019] -# old pattern(s): -#(http[\x09-\x0d -~]*(200 ok|302 |304 )[\x09-\x0d -~]*(connection:|content-type:|content-length:))|^(post [\x09-\x0d -~]* http/) |