Page MenuHomeFreeBSD
Differential D17765

Add ability to use dynamic external prefix in ipfw_nptv6 module
ClosedPublic
Actions

Authored by ae on Oct 30 2018, 7:50 PM.
Tags
None
Referenced Files
Unknown Object (File)
Thu, Apr 25, 4:55 PM
Unknown Object (File)
Tue, Apr 23, 9:32 PM
Unknown Object (File)
Wed, Apr 10, 12:48 AM
Unknown Object (File)
Mar 22 2024, 8:11 AM
Unknown Object (File)
Feb 8 2024, 11:20 PM
Unknown Object (File)
Feb 2 2024, 10:21 PM
Unknown Object (File)
Jan 11 2024, 9:52 PM
Unknown Object (File)
Dec 20 2023, 4:35 AM
View All 40 Files
Subscribers
0mp
driesm
imp

Details

Reviewers
0mp
Group Reviewers
network
manpages
Commits
rS340360: Add ability to use dynamic external prefix in ipfw_nptv6 module.
Summary

The idea is to have ability to specify interface name that will obtain IPv6 prefix dynamically instead of using ext_prefix argument.

  • to ipfw(8) added ability to use ext_if ifname argument
  • to keep ABI the struct _ipfw_nptv6_cfg was modified using anonymous union. The size of if_name is the same as in6_addr.
  • added ifaddr_event_ext handler and the code modified to be able use specified if_name to obtain external prefix.

The nptv6 instance will handle ifaddr events and take suitable address as external prefix. When address disappears, or interface has not suitable address, instance silently skips handling of matched packets. So, they probably will be routed untranslated.

Diff Detail

Lint
Lint Passed
Unit
No Test Coverage
Build Status
Buildable 20517
Build 19945: arc lint + arc unit

Event Timeline

ae created this revision.Oct 30 2018, 7:50 PM
Herald added a reviewer: manpages. · View Herald TranscriptOct 30 2018, 7:50 PM
Herald added a subscriber: imp. · View Herald Transcript
Harbormaster completed remote builds in B20517: Diff 49804.Oct 30 2018, 7:50 PM
0mp accepted this revision.Oct 30 2018, 8:25 PM
0mp added a subscriber: 0mp.

The manpage change looks fine. Remember to bump the date :)

This revision is now accepted and ready to land.Oct 30 2018, 8:25 PM
driesm added a subscriber: driesm.Nov 10 2018, 10:19 AM

Hi, I tested this code and it works like a charm! Thanks! Now I can have a static addresses config for jails with a dynamic external prefix.
I needed this because my ISP uses DHCPv6 to delegate prefixes which can change, so a static NPTv6 rule in IPFW was a nono.

I guess this wont be MFC'able to STABLE12 as it uses the other patch in D17100? Or maybe this breaks ABI, anyway thanks for doing this!

Closed by commit rS340360: Add ability to use dynamic external prefix in ipfw_nptv6 module. (authored by ae). · Explain WhyNov 12 2018, 11:21 AM
This revision was automatically updated to reflect the committed changes.

Revision Contents
Changeset List

PathSize
sbin/
ipfw/
9 lines
1 line
30 lines
sys/
netinet6/
6 lines
netpfil/
ipfw/
nptv6/
7 lines
177 lines

Diff 49804

View Options

sbin/ipfw/ipfw.8

Loading...
View Options

sbin/ipfw/ipfw2.h

Loading...
View Options

sbin/ipfw/nptv6.c

Loading...
View Options

sys/netinet6/ip_fw_nptv6.h

Loading...
View Options

sys/netpfil/ipfw/nptv6/nptv6.h

Loading...
View Options

sys/netpfil/ipfw/nptv6/nptv6.c

Loading...