summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorlaforge <laforge>2003-04-30 16:54:47 +0000
committerlaforge <laforge>2003-04-30 16:54:47 +0000
commite4ba10e9607f7b7b6a42ac71d98e770af51c89bd (patch)
treedfc4ed301b7adc48c21a1c9f8ca13a48c52aaeff
parent24d362ce2798cff00a0b06a5cb11c7befb1a8c4d (diff)
rename iplimit to connlimit
-rw-r--r--extensions/Makefile2
-rw-r--r--extensions/libipt_connlimit.c36
-rw-r--r--include/linux/netfilter_ipv4/ipt_connlimit.h12
3 files changed, 25 insertions, 25 deletions
diff --git a/extensions/Makefile b/extensions/Makefile
index d1d60b5..c959faa 100644
--- a/extensions/Makefile
+++ b/extensions/Makefile
@@ -5,7 +5,7 @@
# header files are present in the include/linux directory of this iptables
# package (HW)
#
-PF_EXT_SLIB:=ah conntrack dscp ecn esp helper icmp iplimit length limit mac mark multiport owner physdev pkttype rpc standard state tcp tcpmss tos ttl udp unclean DNAT DSCP ECN LOG MARK MASQUERADE MIRROR REDIRECT REJECT SAME SNAT TARPIT TCPMSS TOS TTL ULOG
+PF_EXT_SLIB:=ah connlimit conntrack dscp ecn esp helper icmp length limit mac mark multiport owner physdev pkttype rpc standard state tcp tcpmss tos ttl udp unclean DNAT DSCP ECN LOG MARK MASQUERADE MIRROR REDIRECT REJECT SAME SNAT TARPIT TCPMSS TOS TTL ULOG
PF6_EXT_SLIB:=eui64 hl icmpv6 length limit mac mark multiport owner standard tcp udp HL LOG MARK
# Optionals
diff --git a/extensions/libipt_connlimit.c b/extensions/libipt_connlimit.c
index f0df453..c82c6e4 100644
--- a/extensions/libipt_connlimit.c
+++ b/extensions/libipt_connlimit.c
@@ -1,4 +1,4 @@
-/* Shared library add-on to iptables to add state tracking support. */
+/* Shared library add-on to iptables to add connection limit support. */
#include <stdio.h>
#include <netdb.h>
#include <string.h>
@@ -7,22 +7,22 @@
#include <getopt.h>
#include <iptables.h>
#include <linux/netfilter_ipv4/ip_conntrack.h>
-#include <linux/netfilter_ipv4/ipt_iplimit.h>
+#include <linux/netfilter_ipv4/ipt_connlimit.h>
/* Function which prints out usage message. */
static void
help(void)
{
printf(
-"iplimit v%s options:\n"
-"[!] --iplimit-above n match if the number of existing tcp connections is (not) above n\n"
-" --iplimit-mask n group hosts using mask\n"
+"connlimit v%s options:\n"
+"[!] --connlimit-above n match if the number of existing tcp connections is (not) above n\n"
+" --connlimit-mask n group hosts using mask\n"
"\n", IPTABLES_VERSION);
}
static struct option opts[] = {
- { "iplimit-above", 1, 0, '1' },
- { "iplimit-mask", 1, 0, '2' },
+ { "connlimit-above", 1, 0, '1' },
+ { "connlimit-mask", 1, 0, '2' },
{0}
};
@@ -42,7 +42,7 @@ parse(int c, char **argv, int invert, unsigned int *flags,
unsigned int *nfcache,
struct ipt_entry_match **match)
{
- struct ipt_iplimit_info *info = (struct ipt_iplimit_info*)(*match)->data;
+ struct ipt_connlimit_info *info = (struct ipt_connlimit_info*)(*match)->data;
if (0 == (*flags & 2)) {
/* set default mask unless we've already seen a mask option */
@@ -73,7 +73,7 @@ parse(int c, char **argv, int invert, unsigned int *flags,
static void final_check(unsigned int flags)
{
if (!flags & 1)
- exit_error(PARAMETER_PROBLEM, "You must specify `--iplimit-above'");
+ exit_error(PARAMETER_PROBLEM, "You must specify `--connlimit-above'");
}
static int
@@ -97,7 +97,7 @@ print(const struct ipt_ip *ip,
const struct ipt_entry_match *match,
int numeric)
{
- struct ipt_iplimit_info *info = (struct ipt_iplimit_info*)match->data;
+ struct ipt_connlimit_info *info = (struct ipt_connlimit_info*)match->data;
printf("#conn/%d %s %d ", count_bits(info->mask),
info->inverse ? "<" : ">", info->limit);
@@ -106,17 +106,17 @@ print(const struct ipt_ip *ip,
/* Saves the matchinfo in parsable form to stdout. */
static void save(const struct ipt_ip *ip, const struct ipt_entry_match *match)
{
- struct ipt_iplimit_info *info = (struct ipt_iplimit_info*)match->data;
+ struct ipt_connlimit_info *info = (struct ipt_connlimit_info*)match->data;
- printf("%s--iplimit-above %d ",info->inverse ? "! " : "",info->limit);
- printf("--iplimit-mask %d ",count_bits(info->mask));
+ printf("%s--connlimit-above %d ",info->inverse ? "! " : "",info->limit);
+ printf("--connlimit-mask %d ",count_bits(info->mask));
}
-static struct iptables_match iplimit = {
- name: "iplimit",
+static struct iptables_match connlimit = {
+ name: "connlimit",
version: IPTABLES_VERSION,
- size: IPT_ALIGN(sizeof(struct ipt_iplimit_info)),
- userspacesize: offsetof(struct ipt_iplimit_info,data),
+ size: IPT_ALIGN(sizeof(struct ipt_connlimit_info)),
+ userspacesize: offsetof(struct ipt_connlimit_info,data),
help: help,
init: init,
parse: parse,
@@ -128,5 +128,5 @@ static struct iptables_match iplimit = {
void _init(void)
{
- register_match(&iplimit);
+ register_match(&connlimit);
}
diff --git a/include/linux/netfilter_ipv4/ipt_connlimit.h b/include/linux/netfilter_ipv4/ipt_connlimit.h
index 6282194..d99193b 100644
--- a/include/linux/netfilter_ipv4/ipt_connlimit.h
+++ b/include/linux/netfilter_ipv4/ipt_connlimit.h
@@ -1,12 +1,12 @@
-#ifndef _IPT_IPLIMIT_H
-#define _IPT_IPLIMIT_H
+#ifndef _IPT_CONNLIMIT_H
+#define _IPT_CONNLIMIT_H
-struct ipt_iplimit_data;
+struct ipt_connlimit_data;
-struct ipt_iplimit_info {
+struct ipt_connlimit_info {
int limit;
int inverse;
u_int32_t mask;
- struct ipt_iplimit_data *data;
+ struct ipt_connlimit_data *data;
};
-#endif /* _IPT_IPLIMIT_H */
+#endif /* _IPT_CONNLIMIT_H */