68071c299a
o Modify ipfw(8) to be able set any prefix6 not just Well-Known, and also show configured prefix6; o relocate some definitions and macros into proper place; o convert nat64_debug and nat64_allow_private variables to be VNET-compatible; o add struct nat64_config that keeps generic configuration needed to NAT64 code; o add nat64_check_prefix6() function to check validness of specified by user IPv6 prefix according to RFC6052; o use nat64_check_private_ip4() and nat64_embed_ip4() functions instead of nat64_get_ip4() and nat64_set_ip4() macros. This allows to use any configured IPv6 prefixes that are allowed by RFC6052; o introduce NAT64_WKPFX flag, that is set when IPv6 prefix is Well-Known IPv6 prefix. It is used to reduce overhead to check this; o modify nat64lsn_cfg and nat64stl_cfg structures to use nat64_config structure. And respectivelly modify the rest of code; o remove now unused ro argument from nat64_output() function; o remove __FreeBSD_version ifdef, NAT64 was not merged to older versions; o add commented -DIPFIREWALL_NAT64_DIRECT_OUTPUT flag to module's Makefile as example. Obtained from: Yandex LLC MFC after: 1 month Sponsored by: Yandex LLC
60 lines
2.2 KiB
C
60 lines
2.2 KiB
C
/*-
|
|
* Copyright (c) 2015-2018 Yandex LLC
|
|
* Copyright (c) 2015-2018 Andrey V. Elsukov <ae@FreeBSD.org>
|
|
* All rights reserved.
|
|
*
|
|
* Redistribution and use in source and binary forms, with or without
|
|
* modification, are permitted provided that the following conditions
|
|
* are met:
|
|
*
|
|
* 1. Redistributions of source code must retain the above copyright
|
|
* notice, this list of conditions and the following disclaimer.
|
|
* 2. Redistributions in binary form must reproduce the above copyright
|
|
* notice, this list of conditions and the following disclaimer in the
|
|
* documentation and/or other materials provided with the distribution.
|
|
*
|
|
* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
|
|
* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
|
|
* OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
|
|
* IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
|
|
* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
|
|
* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
|
|
* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
|
|
* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
|
|
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
|
|
* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
*
|
|
* $FreeBSD$
|
|
*/
|
|
|
|
#ifndef _IP_FW_NAT64_H_
|
|
#define _IP_FW_NAT64_H_
|
|
|
|
#define DPRINTF(mask, fmt, ...) \
|
|
if (V_nat64_debug & (mask)) \
|
|
printf("NAT64: %s: " fmt "\n", __func__, ## __VA_ARGS__)
|
|
#define DP_GENERIC 0x0001
|
|
#define DP_OBJ 0x0002
|
|
#define DP_JQUEUE 0x0004
|
|
#define DP_STATE 0x0008
|
|
#define DP_DROPS 0x0010
|
|
#define DP_ALL 0xFFFF
|
|
|
|
VNET_DECLARE(int, nat64_debug);
|
|
VNET_DECLARE(int, nat64_allow_private);
|
|
#define V_nat64_debug VNET(nat64_debug)
|
|
#define V_nat64_allow_private VNET(nat64_allow_private)
|
|
|
|
#if 0
|
|
#define NAT64NOINLINE __noinline
|
|
#else
|
|
#define NAT64NOINLINE
|
|
#endif
|
|
|
|
int nat64stl_init(struct ip_fw_chain *ch, int first);
|
|
void nat64stl_uninit(struct ip_fw_chain *ch, int last);
|
|
int nat64lsn_init(struct ip_fw_chain *ch, int first);
|
|
void nat64lsn_uninit(struct ip_fw_chain *ch, int last);
|
|
|
|
#endif /* _IP_FW_NAT64_H_ */
|