TeamSpeak-Systems/ts3init_linux_netfilter_module — reverse-engineered prompt

I run TeamSpeak 3 servers and I want a Linux firewall helper that can take the first part of the TeamSpeak connection away from the server so UDP init floods with spoofed IPs do not overwhelm it.

Please build a C based Linux netfilter module with iptables extensions that can recognize TeamSpeak init packets, handle get cookie and get puzzle packets, generate set cookie replies, send reset replies when needed, and only let clients through after they prove they can receive the cookie. Include a simple Makefile, install steps, and example iptables rules using an authorized IP set with a short timeout.

Keep it practical and focused on Linux servers. Add clear comments and a README that explains what the module does, the required kernel headers and iptables development headers, how to build it, how to load it, and that it is experimental proof of concept code rather than production ready protection.