Shehar Yaar
Shehar Yaar
In the `examples/dnsblock/dnsblock.lua`, we extract the dns name because the skb includes the entire packet (https://github.com/luainkernel/lunatik/blob/master/examples/dnsblock/dnsblock.lua#L51). In this case `thoff` is the transport header offset (udp header offsert) and the...
Yes. It's there in the PR (#154 ), the following fields : https://github.com/luainkernel/lunatik/pull/154/files#diff-b335630551682c19a781afebcf4d07bf978fb1f8ac04c6bf87428ed5106870f5R1222 But it would be a great help if you can test it out on your own convenience...
I guess you can use `ebtables`, and use `iptables` example only. You can `netfilter.family` of type NF_BRIDGE I guess. I haven't tried it yet.
It's a pleasure to hear this.
Can be closed as completed.
Hi @rootxrishabh , are you still working on it ? I would like to take this up. @Ankurk99 are you talking about the output to stdout or to the zip...
Thanks for assigning this, will follow up if I have a query or a PR is ready.
I checked that `karmor probe` accepts namespace , format string, grpc and other flags. So how do I tackle those in `karmor sysdump` do I default the namespace to _kubearmor_...
Also, the probe dump would be in yaml format or just a raw stdout dump (karmor-probe.dump) ?