yannweb
/
netsukuku
Наблюдаван 2
Харесван 1
Разклонения 0
Код Задачи 4 Заявки за сливане 0 Версии 0 Уики Activity
Няма описание https://github.com/Netsukuku/netsukuku
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
207 Ревизии
4 Клонове
Клон: master
Клонове Маркери
${ item.name }
Create branch ${ searchTerm }
от 'master'
${ noResults }
netsukuku/src/libiptc/iptables.h

iptables.h 5.4KB
Постоянна връзка История Директен файл

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190 
  1. #ifndef _IPTABLES_USER_H

  2. #define _IPTABLES_USER_H

  3. 

  4. #include "iptables_common.h"

  5. #include "libiptc/libiptc.h"

  6. 

  7. #ifndef IPT_LIB_DIR

  8. #define IPT_LIB_DIR "/usr/local/lib/iptables"

  9. #endif

  10. 

  11. #ifndef IPPROTO_SCTP

  12. #define IPPROTO_SCTP 132

  13. #endif

  14. 

  15. #ifndef IPT_SO_GET_REVISION_MATCH	/* Old kernel source. */

  16. #define IPT_SO_GET_REVISION_MATCH	(IPT_BASE_CTL + 2)

  17. #define IPT_SO_GET_REVISION_TARGET	(IPT_BASE_CTL + 3)

  18. 

  19. struct ipt_get_revision {

  20. 	char name[IPT_FUNCTION_MAXNAMELEN - 1];

  21. 

  22. 	u_int8_t revision;

  23. };

  24. #endif							/* IPT_SO_GET_REVISION_MATCH   Old kernel source */

  25. 

  26. struct iptables_rule_match {

  27. 	struct iptables_rule_match *next;

  28. 

  29. 	struct iptables_match *match;

  30. };

  31. 

  32. /* Include file for additions: new matches and targets. */

  33. struct iptables_match {

  34. 	struct iptables_match *next;

  35. 

  36. 	ipt_chainlabel name;

  37. 

  38. 	/* Revision of match (0 by default). */

  39. 	u_int8_t revision;

  40. 

  41. 	const char *version;

  42. 

  43. 	/* Size of match data. */

  44. 	size_t size;

  45. 

  46. 	/* Size of match data relevent for userspace comparison purposes */

  47. 	size_t userspacesize;

  48. 

  49. 	/* Function which prints out usage message. */

  50. 	void (*help) (void);

  51. 

  52. 	/* Initialize the match. */

  53. 	void (*init) (struct ipt_entry_match * m, unsigned int *nfcache);

  54. 

  55. 	/* Function which parses command options; returns true if it

  56. 	   ate an option */

  57. 	int (*parse) (int c, char **argv, int invert, unsigned int *flags,

  58. 				  const struct ipt_entry * entry,

  59. 				  unsigned int *nfcache, struct ipt_entry_match ** match);

  60. 

  61. 	/* Final check; exit if not ok. */

  62. 	void (*final_check) (unsigned int flags);

  63. 

  64. 	/* Prints out the match iff non-NULL: put space at end */

  65. 	void (*print) (const struct ipt_ip * ip,

  66. 				   const struct ipt_entry_match * match, int numeric);

  67. 

  68. 	/* Saves the match info in parsable form to stdout. */

  69. 	void (*save) (const struct ipt_ip * ip,

  70. 				  const struct ipt_entry_match * match);

  71. 

  72. 	/* Pointer to list of extra command-line options */

  73. 	const struct option *extra_opts;

  74. 

  75. 	/* Ignore these men behind the curtain: */

  76. 	unsigned int option_offset;

  77. 	struct ipt_entry_match *m;

  78. 	unsigned int mflags;

  79. #ifdef NO_SHARED_LIBS

  80. 	unsigned int loaded;		/* simulate loading so options are merged properly */

  81. #endif

  82. };

  83. 

  84. struct iptables_target {

  85. 	struct iptables_target *next;

  86. 

  87. 	ipt_chainlabel name;

  88. 

  89. 	/* Revision of target (0 by default). */

  90. 	u_int8_t revision;

  91. 

  92. 	const char *version;

  93. 

  94. 	/* Size of target data. */

  95. 	size_t size;

  96. 

  97. 	/* Size of target data relevent for userspace comparison purposes */

  98. 	size_t userspacesize;

  99. 

  100. 	/* Function which prints out usage message. */

  101. 	void (*help) (void);

  102. 

  103. 	/* Initialize the target. */

  104. 	void (*init) (struct ipt_entry_target * t, unsigned int *nfcache);

  105. 

  106. 	/* Function which parses command options; returns true if it

  107. 	   ate an option */

  108. 	int (*parse) (int c, char **argv, int invert, unsigned int *flags,

  109. 				  const struct ipt_entry * entry,

  110. 				  struct ipt_entry_target ** target);

  111. 

  112. 	/* Final check; exit if not ok. */

  113. 	void (*final_check) (unsigned int flags);

  114. 

  115. 	/* Prints out the target iff non-NULL: put space at end */

  116. 	void (*print) (const struct ipt_ip * ip,

  117. 				   const struct ipt_entry_target * target, int numeric);

  118. 

  119. 	/* Saves the targinfo in parsable form to stdout. */

  120. 	void (*save) (const struct ipt_ip * ip,

  121. 				  const struct ipt_entry_target * target);

  122. 

  123. 	/* Pointer to list of extra command-line options */

  124. 	struct option *extra_opts;

  125. 

  126. 	/* Ignore these men behind the curtain: */

  127. 	unsigned int option_offset;

  128. 	struct ipt_entry_target *t;

  129. 	unsigned int tflags;

  130. 	unsigned int used;

  131. #ifdef NO_SHARED_LIBS

  132. 	unsigned int loaded;		/* simulate loading so options are merged properly */

  133. #endif

  134. };

  135. 

  136. extern int line;

  137. 

  138. /* Your shared library should call one of these. */

  139. extern void register_match(struct iptables_match *me);

  140. extern void register_target(struct iptables_target *me);

  141. 

  142. extern struct in_addr *dotted_to_addr(const char *dotted);

  143. extern char *addr_to_dotted(const struct in_addr *addrp);

  144. extern char *addr_to_anyname(const struct in_addr *addr);

  145. extern char *mask_to_dotted(const struct in_addr *mask);

  146. 

  147. extern void parse_hostnetworkmask(const char *name,

  148. 								  struct in_addr **addrpp,

  149. 								  struct in_addr *maskp,

  150. 								  unsigned int *naddrs);

  151. extern u_int16_t parse_protocol(const char *s);

  152. extern void parse_interface(const char *arg, char *vianame,

  153. 							unsigned char *mask);

  154. 

  155. extern int do_command(int argc, char *argv[], char **table,

  156. 					  iptc_handle_t * handle);

  157. /* Keeping track of external matches and targets: linked lists.  */

  158. extern struct iptables_match *iptables_matches;

  159. extern struct iptables_target *iptables_targets;

  160. 

  161. enum ipt_tryload {

  162. 	DONT_LOAD,

  163. 	TRY_LOAD,

  164. 	LOAD_MUST_SUCCEED

  165. };

  166. 

  167. extern struct iptables_target *find_target(const char *name,

  168. 										   enum ipt_tryload);

  169. extern struct iptables_match *find_match(const char *name,

  170. 										 enum ipt_tryload,

  171. 										 struct iptables_rule_match

  172. 										 **match);

  173. 

  174. extern int delete_chain(const ipt_chainlabel chain, int verbose,

  175. 						iptc_handle_t * handle);

  176. extern int flush_entries(const ipt_chainlabel chain, int verbose,

  177. 						 iptc_handle_t * handle);

  178. extern int

  179. for_each_chain(int (*fn) (const ipt_chainlabel, int, iptc_handle_t *),

  180. 			   int verbose, int builtinstoo, iptc_handle_t * handle);

  181. 

  182. /* kernel revision handling */

  183. extern int kernel_version;

  184. extern void get_kernel_version(void);

  185. #define LINUX_VERSION(x,y,z)	(0x10000*(x) + 0x100*(y) + z)

  186. #define LINUX_VERSION_MAJOR(x)	(((x)>>16) & 0xFF)

  187. #define LINUX_VERSION_MINOR(x)	(((x)>> 8) & 0xFF)

  188. #define LINUX_VERSION_PATCH(x)	( (x)      & 0xFF)

  189. 

  190. #endif /*_IPTABLES_USER_H*/