Traffic filtering at scale on Linux
Action | Key |
---|---|
Play / Pause | K or space |
Mute / Unmute | M |
Toggle fullscreen mode | F |
Select next subtitles | C |
Select next audio track | A |
Toggle automatic slides maximization | V |
Seek 5s backward | left arrow |
Seek 5s forward | right arrow |
Seek 10s backward | shift + left arrow or J |
Seek 10s forward | shift + right arrow or L |
Seek 60s backward | control + left arrow |
Seek 60s forward | control + right arrow |
Seek 1 frame backward | alt + left arrow |
Seek 1 frame forward | alt + right arrow |
Decrease volume | shift + down arrow |
Increase volume | shift + up arrow |
Decrease playback rate | < |
Increase playback rate | > |
Seek to end | end |
Seek to beginning | beginning |
Share this media
Download links
HLS video stream
You can use an external player to play this stream (like VLC).
HLS video streamWhen subscribed to notifications, an email will be sent to you for all added annotations.
Your user account has no email address.
Information on this media
WARNING: the introduction part is missing from the recording, we are sorry for that.
BPF programs are widely known for packet filtering in libpcap (the underlying capture library used by tcpdump and wireshark). One can also use them for performance analysis (perf uses BPF programs), but also for security purposes (seccomp uses BPF as well).
In this talk, we focus on networking and dive into BPF bytecode. First, we will have a look on the available toolchains and API. Then we will jump into actual BPF programs and figure how eBPF can be leveraged to perform traffic filtering using several mechanism amongst socket filtering API, iptables and tc. Finally, we will scratch the surface of XDP capabilities.
François Serman
François filters large numbers of packets and automate things at OVH.
Other media in the channel "2018"
116 views, 5 this yearGlassfish from (IN)Secure adminJuly 6th, 2018
161 views, 1 this yearShadow on the Wall - Risks and Flaws with ShadowsocksJuly 6th, 2018
57 viewsOpen Hardware for (software) offensive securityJuly 6th, 2018
48 viewsFreedom Fighting Mode - Open Source Hacking HarnessJuly 6th, 2018
79 views, 2 this yearExpl-iot: IoT Security Testing FrameworkJuly 6th, 2018
23 viewsIo(M)T Security: A year in reviewJuly 6th, 2018