diff options
author | Florian Westphal <fw@strlen.de> | 2013-05-06 21:07:38 +0200 |
---|---|---|
committer | Florian Westphal <fw@strlen.de> | 2013-05-06 21:07:38 +0200 |
commit | ccbf6b6448a4210432b76fd4660798705b05f8c4 (patch) | |
tree | f41c1d1b789dd50d77c4570b841db4cfc3506fd3 /include/linux | |
parent | ca376fcbe51b9a102a490545957d5fee69e253e1 (diff) |
extensions: add connlabel match
allows to "tag" connections with up to 128 label names.
Labels are defined in /etc/xtables/connlabel.conf, example:
0 from eth0
1 via eth0
Labels can then be attached to flows, e.g.
-A PREROUTING -i eth0 -m connlabel --label "from eth0" --set
Signed-off-by: Florian Westphal <fw@strlen.de>
Diffstat (limited to 'include/linux')
-rw-r--r-- | include/linux/netfilter/xt_connlabel.h | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/include/linux/netfilter/xt_connlabel.h b/include/linux/netfilter/xt_connlabel.h new file mode 100644 index 00000000..c4bc9ee9 --- /dev/null +++ b/include/linux/netfilter/xt_connlabel.h @@ -0,0 +1,12 @@ +#include <linux/types.h> + +#define XT_CONNLABEL_MAXBIT 127 +enum xt_connlabel_mtopts { + XT_CONNLABEL_OP_INVERT = 1 << 0, + XT_CONNLABEL_OP_SET = 1 << 1, +}; + +struct xt_connlabel_mtinfo { + __u16 bit; + __u16 options; +}; |