d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
171,234 Commits 72 Branches 135 Tags 3.2 GiB
23bc7025c4
Commit Graph

16 Commits

Author SHA1 Message Date
Andrey V. Elsukov
c57e67d04e Sync ng_nat with recent (r222806) ipfw_nat changes: 
Make a behaviour of the libalias based in-kernel NAT a bit closer to
  how natd(8) does work. natd(8) drops packets only when libalias returns
  PKT_ALIAS_IGNORED and "deny_incoming" option is set, but ipfw_nat
  always did drop packets that were not aliased, even if they should
  not be aliased and just are going through.

Also add SCTP support: mark response packets to skip firewall processing.

MFC after:	1 month
 2011-06-07 06:48:42 +00:00
Gleb Smirnoff
ca47294ddf LibAliasInit() should allocate memory with M_WAITOK flag. Modify it 
and its callers.
 2011-04-18 20:07:08 +00:00
Gleb Smirnoff
674d86bf91 Node constructor methods are supposed to be called in syscall 
context always. Convert nodes to consistently use M_WAITOK flag
for memory allocation.

Reviewed by:	julian
 2011-04-18 09:12:27 +00:00
Dag-Erling Smørgrav
1ede983cc9 Retire the MALLOC and FREE macros. They are an abomination unto style(9). 
MFC after:	3 months
 2008-10-23 15:53:51 +00:00
Alexander Motin
a9a13b54e9 Pass really available buffer size to libalias instead of MCLBYTES constant. 
MCLBYTES constant were used with believe that m_megapullup() always moves
date into a fresh cluster that may become not so.
 2008-06-01 15:13:32 +00:00
Alexander Motin
fffba935e4 Add support for the libalias redirect functionality. 
Submitted by:   Vadim Goncharov <vadim_nuclight@mail.ru>
 2008-03-01 17:14:02 +00:00
Alexander Motin
e842c54054 Add support for setmode and settarget messages. 
Approved by:	glebius (mentor)
 2007-05-22 12:23:39 +00:00
Alexander Motin
179f56e196 Allow node to bypass traffic while no alias address defined. 
Approved by:	glebius (mentor)
 2007-05-22 12:14:43 +00:00
Gleb Smirnoff
4b4ee018fa Return value PKT_ALIAS_FOUND_HEADER_FRAGMENT isn't an error case. The 
packet shouldn't be dropped.

Submitted by:	Alexander Motin <mav alkar.net>
 2006-12-21 10:26:01 +00:00
Gleb Smirnoff
e7bf470011 Correctly calculate length of IP header. 
Submitted by:	Eugene Hartmann <eugene tpsb.com.ru>
 2006-12-12 12:35:06 +00:00
Paolo Pisati
e876228edc Remove m_megapullup from ng_nat and put it under libalias. 
Approved by: gleb
 2006-12-01 16:27:11 +00:00
Gleb Smirnoff
b0dc008358 Fix result of some mechanical change that I did some time ago, when 
writing this node.
 2006-10-13 09:11:12 +00:00
Gleb Smirnoff
3a48a9fac9 - After LibAlias processing check for TCP packet with th_x2 field 
set. If found, then recalculate its checksum.
- Remove debugging printfs.
- Slightly rearrange code in ng_nat_rcvdata().

Approved by:	re (scottl)
 2005-06-27 07:39:13 +00:00
Gleb Smirnoff
cc8c6970fd Move assertion below initializer. 
Submitted by:	Noritoshi Demizu
Pointy hat to: 	glebius
 2005-05-11 08:28:09 +00:00
Gleb Smirnoff
2046fd5f68 - Assert that mbuf length equals packet length. 
- Tell libalias, that we have MCLBYTES to play with.
- Obtain length of data in mbuf from updated IP header.
 2005-05-10 14:19:10 +00:00
Gleb Smirnoff
c4c9b52b87 ng_nat - a netgraph(4) node, which does NAT 2005-05-05 23:41:21 +00:00