Menu
What's new
By:
Filters Better Search

What would it take to do DPI?

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

B

Bamsefar

Senior Member
So I have this dream (yea right....) to somehow have DPI (Deep Packet Inspection) running in my router to be able to do some minor modifications to URLs that are sent (SSL). Now I do admit, I don't know enough, rather I know just to little about what I am now asking, however I can not learn without asking...

So What do I need to look for to be able to do DPI, and in this case I will include an example, I would like to go from:

https://logs2.xiti.com/go.ad?xts=37...alare_och_receiver_71442779.htm?ca=11&w=1

to:

https://www.blocket.se/stockholm/Dvd_spelare_med_hogtalare_och_receiver_71442779.htm?ca=11&w=1

In the logic world this is easy, then we added https (SSL) and it becomes somewhat more of a challenge.

Is there any open source software that I could use for this, or do I have to go pfSense or something?
 
The instant you introduce SSL means you can forget about any way to do it at the packet level. DPI won't help you.
 
RMerlin said:
He wants not only to access the encrypted payload, but to modify it. You'd need a MITM-type of setup to be able to do this.
Click to expand...

That's what Sandvine can do...

How many times has one seen video or pix that have been "optimized"...
 
Agree that you should not be able to interfere with SSL comms, without NSA resources and their alleged massive look-up tables of prime factors of big numbers... But do take a look at pixelserv-tls, if the router pretends to be the first tracking host it would see the second url. pixelserv does have some redirect code, the idea being the browser is referred to the real site and carries on from there, I have never studied in detail but the non-tls version did work on some http sites a while ago.
 
sfx2000 said:
That's what Sandvine can do...

How many times has one seen video or pix that have been "optimized"...
Click to expand...

I've heard of traffic-shaping ("optimizing"?) encrypted packets, but not modifying encrypted packets, which is what OP wants.
 
Think trying to do SSL encrypted packet inspection on a home router could get messy quickly given you are going to have to install the CA cert on all your clients and then the router is going to have to generate certs on the fly which I imagine is going to chew up resources quickly on a consumer router....
 
jernau said:
Think trying to do SSL encrypted packet inspection on a home router could get messy quickly given you are going to have to install the CA cert on all your clients and then the router is going to have to generate certs on the fly which I imagine is going to chew up resources quickly on a consumer router....
Click to expand...

One's not going to do any real DPI on a home router, period...
 
You must log in or register to reply here.

Similar threads

M
Diversion Diversion - do I really have to import ca.crt?
Replies
4
Views
4K
elorimer
E
C
N00bs need simple page with outdated stuff & working stuff. Also simple commonly used phrases only people following Merlin for years understand :D
Replies
16
Views
2K
gattaca
G
M
ASUS RT-AX88U - System Log messages, what does it mean and how to fix it ?
Replies
4
Views
5K
manol68
M
T
WiFi 6 was not worth it for me ~ Journey of WiFi 6 AiMesh back to WiFi 5 UniFi ~
2
Replies
30
Views
11K
avtella
avtella
W
Asus-wrt AC52U configuration problems.
Replies
0
Views
3K
whatever2222
W

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 868 (members: 28, guests: 840)
Top