Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Fetching contributors…

Cannot retrieve contributors at this time

70 lines (63 sloc) 2.511 kb
/*
*****************************************************************************
*
* File: fw_util_ipfw.h
*
* Author: Damien Stuart (dstuart@dstuart.org)
*
* Purpose: Header file for fw_util_ipfw.c.
*
* Copyright 2010 Damien Stuart (dstuart@dstuart.org)
*
* License (GNU Public License):
*
* This program is free software; you can redistribute it and/or
* modify it under the terms of the GNU General Public License
* as published by the Free Software Foundation; either version 2
* of the License, or (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
* USA
*
*****************************************************************************
*/
#ifndef FW_UTIL_IPFW_H
#define FW_UTIL_IPFW_H
enum {
RULE_FREE = 0,
RULE_ACTIVE,
RULE_EXPIRED,
RULE_TMP_MARKED
};
/* ipfw command args
*/
#define IPFW_ADD_RULE_ARGS "add %u set %u pass %u from %s to me dst-port %u setup keep-state // " EXPIRE_COMMENT_PREFIX "%u"
#define IPFW_ADD_CHECK_STATE_ARGS "add %u set %u check-state"
#define IPFW_MOVE_RULE_ARGS "set move rule %u to %u"
#define IPFW_MOVE_SET_ARGS "set move %u to %u"
#define IPFW_DISABLE_SET_ARGS "set disable %u"
#define IPFW_LIST_ALL_RULES_ARGS "list"
#define IPFW_DEL_RULE_SET_ARGS "delete set %u"
#ifdef __APPLE__
#define IPFW_DEL_RULE_ARGS "delete %u" //--DSS diff args
#define IPFW_LIST_RULES_ARGS "-d -S -T list | grep 'set %u'"
#define IPFW_LIST_SET_RULES_ARGS "-S list | grep 'set %u'"
#define IPFW_LIST_EXP_SET_RULES_ARGS "-S list | grep 'set %u'"
#define IPFW_LIST_SET_DYN_RULES_ARGS "-d list | grep 'set %u'"
#else
#define IPFW_DEL_RULE_ARGS "set %u delete %u"
#define IPFW_LIST_RULES_ARGS "-d -S -T set %u list"
#define IPFW_LIST_SET_RULES_ARGS "set %u list"
#define IPFW_LIST_EXP_SET_RULES_ARGS "-S set %u list"
#define IPFW_LIST_SET_DYN_RULES_ARGS "-d set %u list"
#endif
void ipfw_purge_expired_rules(const fko_srv_options_t *opts);
#endif /* FW_UTIL_IPFW_H */
/***EOF***/
Jump to Line
Something went wrong with that request. Please try again.