Changeset View
Changeset View
Standalone View
Standalone View
sys/netinet/ip_fw.h
Show First 20 Lines • Show All 103 Lines • ▼ Show 20 Lines | |||||
#define IP_FW_NAT44_DESTROY 112 /* Destroys NAT44 instance */ | #define IP_FW_NAT44_DESTROY 112 /* Destroys NAT44 instance */ | ||||
#define IP_FW_NAT44_XGETCONFIG 113 /* Get NAT44 instance config */ | #define IP_FW_NAT44_XGETCONFIG 113 /* Get NAT44 instance config */ | ||||
#define IP_FW_NAT44_LIST_NAT 114 /* List all NAT44 instances */ | #define IP_FW_NAT44_LIST_NAT 114 /* List all NAT44 instances */ | ||||
#define IP_FW_NAT44_XGETLOG 115 /* Get log from NAT44 instance */ | #define IP_FW_NAT44_XGETLOG 115 /* Get log from NAT44 instance */ | ||||
#define IP_FW_DUMP_SOPTCODES 116 /* Dump available sopts/versions */ | #define IP_FW_DUMP_SOPTCODES 116 /* Dump available sopts/versions */ | ||||
#define IP_FW_DUMP_SRVOBJECTS 117 /* Dump existing named objects */ | #define IP_FW_DUMP_SRVOBJECTS 117 /* Dump existing named objects */ | ||||
#define IP_FW_NAT64STL_CREATE 130 /* Create stateless NAT64 instance */ | |||||
#define IP_FW_NAT64STL_DESTROY 131 /* Destroy stateless NAT64 instance */ | |||||
#define IP_FW_NAT64STL_CONFIG 132 /* Modify stateless NAT64 instance */ | |||||
#define IP_FW_NAT64STL_LIST 133 /* List stateless NAT64 instances */ | |||||
#define IP_FW_NAT64STL_STATS 134 /* Get NAT64STL instance statistics */ | |||||
#define IP_FW_NAT64LSN_CREATE 140 /* Create stateful NAT64 instance */ | |||||
#define IP_FW_NAT64LSN_DESTROY 141 /* Destroy stateful NAT64 instance */ | |||||
#define IP_FW_NAT64LSN_CONFIG 142 /* Modify stateful NAT64 instance */ | |||||
#define IP_FW_NAT64LSN_LIST 143 /* List stateful NAT64 instances */ | |||||
#define IP_FW_NAT64LSN_STATS 144 /* Get NAT64LSN instance statistics */ | |||||
#define IP_FW_NAT64LSN_LIST_STATES 145 /* Get stateful NAT64 states */ | |||||
/* | /* | ||||
* The kernel representation of ipfw rules is made of a list of | * The kernel representation of ipfw rules is made of a list of | ||||
* 'instructions' (for all practical purposes equivalent to BPF | * 'instructions' (for all practical purposes equivalent to BPF | ||||
* instructions), which specify which fields of the packet | * instructions), which specify which fields of the packet | ||||
* (or its metadata) should be analysed. | * (or its metadata) should be analysed. | ||||
* | * | ||||
* Each instruction is stored in a structure which begins with | * Each instruction is stored in a structure which begins with | ||||
* "ipfw_insn", and can contain extra fields depending on the | * "ipfw_insn", and can contain extra fields depending on the | ||||
▲ Show 20 Lines • Show All 658 Lines • ▼ Show 20 Lines | |||||
#define IPFW_TLV_RULE_LIST 3 | #define IPFW_TLV_RULE_LIST 3 | ||||
#define IPFW_TLV_DYNSTATE_LIST 4 | #define IPFW_TLV_DYNSTATE_LIST 4 | ||||
#define IPFW_TLV_TBL_ENT 5 | #define IPFW_TLV_TBL_ENT 5 | ||||
#define IPFW_TLV_DYN_ENT 6 | #define IPFW_TLV_DYN_ENT 6 | ||||
#define IPFW_TLV_RULE_ENT 7 | #define IPFW_TLV_RULE_ENT 7 | ||||
#define IPFW_TLV_TBLENT_LIST 8 | #define IPFW_TLV_TBLENT_LIST 8 | ||||
#define IPFW_TLV_RANGE 9 | #define IPFW_TLV_RANGE 9 | ||||
#define IPFW_TLV_EACTION 10 | #define IPFW_TLV_EACTION 10 | ||||
#define IPFW_TLV_COUNTERS 11 | |||||
#define IPFW_TLV_OBJDATA 12 | |||||
#define IPFW_TLV_EACTION_BASE 1000 | #define IPFW_TLV_EACTION_BASE 1000 | ||||
#define IPFW_TLV_EACTION_NAME(arg) (IPFW_TLV_EACTION_BASE + (arg)) | #define IPFW_TLV_EACTION_NAME(arg) (IPFW_TLV_EACTION_BASE + (arg)) | ||||
typedef struct _ipfw_obj_data { | |||||
ipfw_obj_tlv head; | |||||
void *data[0]; | |||||
} ipfw_obj_data; | |||||
/* Object name TLV */ | /* Object name TLV */ | ||||
typedef struct _ipfw_obj_ntlv { | typedef struct _ipfw_obj_ntlv { | ||||
ipfw_obj_tlv head; /* TLV header */ | ipfw_obj_tlv head; /* TLV header */ | ||||
uint16_t idx; /* Name index */ | uint16_t idx; /* Name index */ | ||||
uint8_t set; /* set, if applicable */ | uint8_t set; /* set, if applicable */ | ||||
uint8_t type; /* object type, if applicable */ | uint8_t type; /* object type, if applicable */ | ||||
uint32_t spare; /* unused */ | uint32_t spare; /* unused */ | ||||
▲ Show 20 Lines • Show All 222 Lines • Show Last 20 Lines |