/* Shared library add-on to iptables to add ROUTE v6 target support.
* Author : Cedric de Launois, <delaunois@info.ucl.ac.be>
- * v 1.0 2003/06/24
+ * v 1.1 2004/11/23
*/
#include <stdio.h>
#include <linux/netfilter_ipv6/ip6_tables.h>
#include <linux/netfilter_ipv6/ip6t_ROUTE.h>
+/* compile IP6T_ROUTE_TEE support even if kernel headers are unpatched */
+#ifndef IP6T_ROUTE_TEE
+#define IP6T_ROUTE_TEE 0x02
+#endif
+
/* Function which prints out usage message. */
static void
help(void)
"ROUTE target v%s options:\n"
" --oif \tifname \t\tRoute the packet through `ifname' network interface\n"
" --gw \tip \t\tRoute the packet via this gateway\n"
-" --continue\t \t\tRoute the packet and continue traversing the rules.\n"
+" --continue\t \t\tRoute packet and continue traversing the\n"
+" \t \t\trules. Not valid with --iif or --tee.\n"
+" --tee\t \t\tDuplicate packet, route the duplicate,\n"
+" \t \t\tcontinue traversing with original packet.\n"
+" \t \t\tNot valid with --iif or --continue.\n"
"\n",
-"1.0");
+"1.1");
}
static struct option opts[] = {
{ "iif", 1, 0, '2' },
{ "gw", 1, 0, '3' },
{ "continue", 0, 0, '4' },
+ { "tee", 0, 0, '5' },
{ 0 }
};
#define IP6T_ROUTE_OPT_IIF 0x02
#define IP6T_ROUTE_OPT_GW 0x04
#define IP6T_ROUTE_OPT_CONTINUE 0x08
+#define IP6T_ROUTE_OPT_TEE 0x10
/* Function which parses command options; returns true if it
ate an option */
if (*flags & IP6T_ROUTE_OPT_CONTINUE)
exit_error(PARAMETER_PROBLEM,
"Can't specify --continue twice");
+ if (*flags & IP6T_ROUTE_OPT_TEE)
+ exit_error(PARAMETER_PROBLEM,
+ "Can't specify --continue AND --tee");
route_info->flags |= IP6T_ROUTE_CONTINUE;
*flags |= IP6T_ROUTE_OPT_CONTINUE;
break;
+ case '5':
+ if (*flags & IP6T_ROUTE_OPT_TEE)
+ exit_error(PARAMETER_PROBLEM,
+ "Can't specify --tee twice");
+ if (*flags & IP6T_ROUTE_OPT_CONTINUE)
+ exit_error(PARAMETER_PROBLEM,
+ "Can't specify --tee AND --continue");
+
+ route_info->flags |= IP6T_ROUTE_TEE;
+ *flags |= IP6T_ROUTE_OPT_TEE;
+
+ break;
+
default:
return 0;
}
if (route_info->flags & IP6T_ROUTE_CONTINUE)
printf("continue");
+ if (route_info->flags & IP6T_ROUTE_TEE)
+ printf("tee");
+
}
if (route_info->flags & IP6T_ROUTE_CONTINUE)
printf("--continue ");
+
+ if (route_info->flags & IP6T_ROUTE_TEE)
+ printf("--tee ");
}
/* Shared library add-on to iptables to add ROUTE target support.
* Author : Cedric de Launois, <delaunois@info.ucl.ac.be>
- * v 1.8 2003/06/24
+ * v 1.11 2004/11/23
*/
#include <stdio.h>
#include <linux/netfilter_ipv4/ip_tables.h>
#include <linux/netfilter_ipv4/ipt_ROUTE.h>
+/* compile IPT_ROUTE_TEE support even if kernel headers are unpatched */
+#ifndef IPT_ROUTE_TEE
+#define IPT_ROUTE_TEE 0x02
+#endif
+
/* Function which prints out usage message. */
static void
help(void)
{
printf(
"ROUTE target v%s options:\n"
-" --oif \tifname \t\tRoute the packet through `ifname' network interface\n"
-" --iif \tifname \t\tChange the packet's incoming interface to `ifname'\n"
-" --gw \tip \t\tRoute the packet via this gateway\n"
-" --continue\t \t\tRoute the packet and continue traversing the\n"
-" \t \t\trules. Not valid with --iif.\n"
+" --oif \tifname \t\tRoute packet through `ifname' network interface\n"
+" --iif \tifname \t\tChange packet's incoming interface to `ifname'\n"
+" --gw \tip \t\tRoute packet via this gateway `ip'\n"
+" --continue\t \t\tRoute packet and continue traversing the\n"
+" \t \t\trules. Not valid with --iif or --tee.\n"
+" --tee\t \t\tDuplicate packet, route the duplicate,\n"
+" \t \t\tcontinue traversing with original packet.\n"
+" \t \t\tNot valid with --iif or --continue.\n"
"\n",
-"1.8");
+"1.11");
}
static struct option opts[] = {
{ "iif", 1, 0, '2' },
{ "gw", 1, 0, '3' },
{ "continue", 0, 0, '4' },
+ { "tee", 0, 0, '5' },
{ 0 }
};
#define IPT_ROUTE_OPT_IIF 0x02
#define IPT_ROUTE_OPT_GW 0x04
#define IPT_ROUTE_OPT_CONTINUE 0x08
+#define IPT_ROUTE_OPT_TEE 0x10
/* Function which parses command options; returns true if it
ate an option */
if (*flags & IPT_ROUTE_OPT_CONTINUE)
exit_error(PARAMETER_PROBLEM,
"Can't specify --continue twice");
+ if (*flags & IPT_ROUTE_OPT_TEE)
+ exit_error(PARAMETER_PROBLEM,
+ "Can't specify --continue AND --tee");
route_info->flags |= IPT_ROUTE_CONTINUE;
*flags |= IPT_ROUTE_OPT_CONTINUE;
break;
+ case '5':
+ if (*flags & IPT_ROUTE_OPT_TEE)
+ exit_error(PARAMETER_PROBLEM,
+ "Can't specify --tee twice");
+ if (*flags & IPT_ROUTE_OPT_CONTINUE)
+ exit_error(PARAMETER_PROBLEM,
+ "Can't specify --tee AND --continue");
+
+ route_info->flags |= IPT_ROUTE_TEE;
+ *flags |= IPT_ROUTE_OPT_TEE;
+
+ break;
+
default:
return 0;
}
exit_error(PARAMETER_PROBLEM,
"ROUTE target: oif, iif or gw option required");
- if ((flags & IPT_ROUTE_OPT_CONTINUE) && (flags & IPT_ROUTE_OPT_IIF))
+ if ((flags & (IPT_ROUTE_OPT_CONTINUE|IPT_ROUTE_OPT_TEE)) && (flags & IPT_ROUTE_OPT_IIF))
exit_error(PARAMETER_PROBLEM,
"ROUTE target: can't continue traversing the rules with iif option");
}
if (route_info->flags & IPT_ROUTE_CONTINUE)
printf("continue");
+ if (route_info->flags & IPT_ROUTE_TEE)
+ printf("tee");
+
}
if (route_info->flags & IPT_ROUTE_CONTINUE)
printf("--continue ");
+
+ if (route_info->flags & IPT_ROUTE_TEE)
+ printf("--tee ");
}
projects / thirdparty / iptables.git / commitdiff
