diff options
author | Fernando Fernandez Mancera <ffmancera@riseup.net> | 2019-06-19 19:53:50 +0200 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2019-07-06 00:03:55 +0200 |
commit | a6a2d0c9fd97196a98cdf5f1389cd64eae7974b9 (patch) | |
tree | 360d117c307301168e8482781cde0f156db34f0d /include | |
parent | 78709f7b55aa8934f42aa40548dcdf65e6bfeb2c (diff) |
src: add synproxy support
Signed-off-by: Fernando Fernandez Mancera <ffmancera@riseup.net>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'include')
-rw-r--r-- | include/libnftnl/expr.h | 6 | ||||
-rw-r--r-- | include/linux/netfilter/nf_tables.h | 17 |
2 files changed, 23 insertions, 0 deletions
diff --git a/include/libnftnl/expr.h b/include/libnftnl/expr.h index b2f8d75..3e0f5b0 100644 --- a/include/libnftnl/expr.h +++ b/include/libnftnl/expr.h @@ -291,6 +291,12 @@ enum { NFTNL_EXPR_XFRM_SPNUM, }; +enum { + NFTNL_EXPR_SYNPROXY_MSS = NFTNL_EXPR_BASE, + NFTNL_EXPR_SYNPROXY_WSCALE, + NFTNL_EXPR_SYNPROXY_FLAGS, +}; + #ifdef __cplusplus } /* extern "C" */ #endif diff --git a/include/linux/netfilter/nf_tables.h b/include/linux/netfilter/nf_tables.h index 5b1c380..4777331 100644 --- a/include/linux/netfilter/nf_tables.h +++ b/include/linux/netfilter/nf_tables.h @@ -954,6 +954,23 @@ enum nft_osf_attributes { #define NFTA_OSF_MAX (__NFTA_OSF_MAX - 1) /** + * enum nft_synproxy_attributes - nf_tables synproxy expression + * netlink attributes + * + * @NFTA_SYNPROXY_MSS: mss value sent to the backend (NLA_U16) + * @NFTA_SYNPROXY_WSCALE: wscale value sent to the backend (NLA_U8) + * @NFTA_SYNPROXY_FLAGS: flags (NLA_U32) + */ +enum nft_synproxy_attributes { + NFTA_SYNPROXY_UNSPEC, + NFTA_SYNPROXY_MSS, + NFTA_SYNPROXY_WSCALE, + NFTA_SYNPROXY_FLAGS, + __NFTA_SYNPROXY_MAX, +}; +#define NFTA_SYNPROXY_MAX (__NFTA_SYNPROXY_MAX - 1) + +/** * enum nft_ct_keys - nf_tables ct expression keys * * @NFT_CT_STATE: conntrack state (bitmask of enum ip_conntrack_info) |