diff options
Diffstat (limited to 'extensions/libipt_2ttl.c')
-rw-r--r-- | extensions/libipt_2ttl.c | 172 |
1 files changed, 0 insertions, 172 deletions
diff --git a/extensions/libipt_2ttl.c b/extensions/libipt_2ttl.c deleted file mode 100644 index 5e16713..0000000 --- a/extensions/libipt_2ttl.c +++ /dev/null @@ -1,172 +0,0 @@ -/* Shared library add-on to iptables to add TTL matching support - * (C) 2000 by Harald Welte <laforge@gnumonks.org> - * - * $Id: libipt_ttl.c 4544 2005-11-18 17:59:56Z /C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=kaber/emailAddress=kaber@netfilter.org $ - * - * This program is released under the terms of GNU GPL */ - -#include <stdio.h> -#include <stdlib.h> -#include <string.h> -#include <getopt.h> -#include <iptables.h> - -#include <linux/netfilter_ipv4/ip_tables.h> -#include <linux/netfilter_ipv4/ipt_2ttl.h> - -static void help(void) -{ - printf( -"TTL match v%s options:\n" -" --ttl-eq value Match time to live value\n" -" --ttl-lt value Match TTL < value\n" -" --ttl-gt value Match TTL > value\n" -, IPTABLES_VERSION); -} - -static int parse(int c, char **argv, int invert, unsigned int *flags, - const struct ipt_entry *entry, unsigned int *nfcache, - struct ipt_entry_match **match) -{ - struct ipt_ttl_info *info = (struct ipt_ttl_info *) (*match)->data; - unsigned int value; - - check_inverse(optarg, &invert, &optind, 0); - - switch (c) { - case '2': - if (string_to_number(optarg, 0, 255, &value) == -1) - exit_error(PARAMETER_PROBLEM, - "ttl: Expected value between 0 and 255"); - - if (invert) - info->mode = IPT_TTL_NE; - else - info->mode = IPT_TTL_EQ; - - /* is 0 allowed? */ - info->ttl = value; - break; - case '3': - if (string_to_number(optarg, 0, 255, &value) == -1) - exit_error(PARAMETER_PROBLEM, - "ttl: Expected value between 0 and 255"); - - if (invert) - exit_error(PARAMETER_PROBLEM, - "ttl: unexpected `!'"); - - info->mode = IPT_TTL_LT; - info->ttl = value; - break; - case '4': - if (string_to_number(optarg, 0, 255, &value) == -1) - exit_error(PARAMETER_PROBLEM, - "ttl: Expected value between 0 and 255"); - - if (invert) - exit_error(PARAMETER_PROBLEM, - "ttl: unexpected `!'"); - - info->mode = IPT_TTL_GT; - info->ttl = value; - break; - default: - return 0; - - } - - if (*flags) - exit_error(PARAMETER_PROBLEM, - "Can't specify TTL option twice"); - *flags = 1; - - return 1; -} - -static void final_check(unsigned int flags) -{ - if (!flags) - exit_error(PARAMETER_PROBLEM, - "TTL match: You must specify one of " - "`--ttl-eq', `--ttl-lt', `--ttl-gt"); -} - -static void print(const struct ipt_ip *ip, - const struct ipt_entry_match *match, - int numeric) -{ - const struct ipt_ttl_info *info = - (struct ipt_ttl_info *) match->data; - - printf("TTL match "); - switch (info->mode) { - case IPT_TTL_EQ: - printf("TTL == "); - break; - case IPT_TTL_NE: - printf("TTL != "); - break; - case IPT_TTL_LT: - printf("TTL < "); - break; - case IPT_TTL_GT: - printf("TTL > "); - break; - } - printf("%u ", info->ttl); -} - -static void save(const struct ipt_ip *ip, - const struct ipt_entry_match *match) -{ - const struct ipt_ttl_info *info = - (struct ipt_ttl_info *) match->data; - - switch (info->mode) { - case IPT_TTL_EQ: - printf("--ttl-eq "); - break; - case IPT_TTL_NE: - printf("! --ttl-eq "); - break; - case IPT_TTL_LT: - printf("--ttl-lt "); - break; - case IPT_TTL_GT: - printf("--ttl-gt "); - break; - default: - /* error */ - break; - } - printf("%u ", info->ttl); -} - -static struct option opts[] = { - { "ttl", 1, 0, '2' }, - { "ttl-eq", 1, 0, '2'}, - { "ttl-lt", 1, 0, '3'}, - { "ttl-gt", 1, 0, '4'}, - { 0 } -}; - -static struct iptables_match ttl = { - .next = NULL, - .name = "ttl", - .version = IPTABLES_VERSION, - .size = IPT_ALIGN(sizeof(struct ipt_ttl_info)), - .userspacesize = IPT_ALIGN(sizeof(struct ipt_ttl_info)), - .help = &help, - .parse = &parse, - .final_check = &final_check, - .print = &print, - .save = &save, - .extra_opts = opts -}; - - -void ipt_2ttl_init(void) -{ - register_match(&ttl); -} |