diff options
Diffstat (limited to 'lib/ipset_bitmap_port.c')
| -rw-r--r-- | lib/ipset_bitmap_port.c | 107 |
1 files changed, 101 insertions, 6 deletions
diff --git a/lib/ipset_bitmap_port.c b/lib/ipset_bitmap_port.c index 9a37e35..6959c3a 100644 --- a/lib/ipset_bitmap_port.c +++ b/lib/ipset_bitmap_port.c @@ -10,7 +10,7 @@ #include <libipset/types.h> /* prototypes */ /* Parse commandline arguments */ -static const struct ipset_arg bitmap_port_create_args[] = { +static const struct ipset_arg bitmap_port_create_args0[] = { { .name = { "range", NULL }, .has_arg = IPSET_MANDATORY_ARG, .opt = IPSET_OPT_PORT, .parse = ipset_parse_tcp_port, .print = ipset_print_port, @@ -31,7 +31,7 @@ static const struct ipset_arg bitmap_port_create_args[] = { { }, }; -static const struct ipset_arg bitmap_port_add_args[] = { +static const struct ipset_arg bitmap_port_add_args0[] = { { .name = { "timeout", NULL }, .has_arg = IPSET_MANDATORY_ARG, .opt = IPSET_OPT_TIMEOUT, .parse = ipset_parse_timeout, .print = ipset_print_number, @@ -39,7 +39,7 @@ static const struct ipset_arg bitmap_port_add_args[] = { { }, }; -static const char bitmap_port_usage[] = +static const char bitmap_port_usage0[] = "create SETNAME bitmap:port range FROM-TO\n" " [timeout VALUE]\n" "add SETNAME PORT|FROM-TO [timeout VALUE]\n" @@ -61,8 +61,8 @@ static struct ipset_type ipset_bitmap_port0 = { }, }, .args = { - [IPSET_CREATE] = bitmap_port_create_args, - [IPSET_ADD] = bitmap_port_add_args, + [IPSET_CREATE] = bitmap_port_create_args0, + [IPSET_ADD] = bitmap_port_add_args0, }, .mandatory = { [IPSET_CREATE] = IPSET_FLAG(IPSET_OPT_PORT) @@ -83,12 +83,107 @@ static struct ipset_type ipset_bitmap_port0 = { [IPSET_TEST] = IPSET_FLAG(IPSET_OPT_PORT), }, - .usage = bitmap_port_usage, + .usage = bitmap_port_usage0, .description = "Initial revision", }; +/* Parse commandline arguments */ +static const struct ipset_arg bitmap_port_create_args1[] = { + { .name = { "range", NULL }, + .has_arg = IPSET_MANDATORY_ARG, .opt = IPSET_OPT_PORT, + .parse = ipset_parse_tcp_port, .print = ipset_print_port, + }, + { .name = { "timeout", NULL }, + .has_arg = IPSET_MANDATORY_ARG, .opt = IPSET_OPT_TIMEOUT, + .parse = ipset_parse_timeout, .print = ipset_print_number, + }, + { .name = { "counters", NULL }, + .has_arg = IPSET_NO_ARG, .opt = IPSET_OPT_COUNTERS, + .parse = ipset_parse_flag, .print = ipset_print_flag, + }, + /* Backward compatibility */ + { .name = { "from", NULL }, + .has_arg = IPSET_MANDATORY_ARG, .opt = IPSET_OPT_PORT, + .parse = ipset_parse_single_tcp_port, + }, + { .name = { "to", NULL }, + .has_arg = IPSET_MANDATORY_ARG, .opt = IPSET_OPT_PORT_TO, + .parse = ipset_parse_single_tcp_port, + }, + { }, +}; + +static const struct ipset_arg bitmap_port_add_args1[] = { + { .name = { "timeout", NULL }, + .has_arg = IPSET_MANDATORY_ARG, .opt = IPSET_OPT_TIMEOUT, + .parse = ipset_parse_timeout, .print = ipset_print_number, + }, + { .name = { "packets", NULL }, + .has_arg = IPSET_MANDATORY_ARG, .opt = IPSET_OPT_PACKETS, + .parse = ipset_parse_uint64, .print = ipset_print_number, + }, + { .name = { "bytes", NULL }, + .has_arg = IPSET_MANDATORY_ARG, .opt = IPSET_OPT_BYTES, + .parse = ipset_parse_uint64, .print = ipset_print_number, + }, + { }, +}; + +static const char bitmap_port_usage1[] = +"create SETNAME bitmap:port range FROM-TO\n" +" [timeout VALUE] [counters]\n" +"add SETNAME PORT|FROM-TO [timeout VALUE]\n" +" [packets VALUE] [bytes VALUE]\n" +"del SETNAME PORT|FROM-TO\n" +"test SETNAME PORT\n\n" +"where PORT, FROM and TO are port numbers or port names from /etc/services.\n"; + +static struct ipset_type ipset_bitmap_port1 = { + .name = "bitmap:port", + .alias = { "portmap", NULL }, + .revision = 1, + .family = NFPROTO_UNSPEC, + .dimension = IPSET_DIM_ONE, + .elem = { + [IPSET_DIM_ONE - 1] = { + .parse = ipset_parse_tcp_port, + .print = ipset_print_port, + .opt = IPSET_OPT_PORT + }, + }, + .args = { + [IPSET_CREATE] = bitmap_port_create_args1, + [IPSET_ADD] = bitmap_port_add_args1, + }, + .mandatory = { + [IPSET_CREATE] = IPSET_FLAG(IPSET_OPT_PORT) + | IPSET_FLAG(IPSET_OPT_PORT_TO), + [IPSET_ADD] = IPSET_FLAG(IPSET_OPT_PORT), + [IPSET_DEL] = IPSET_FLAG(IPSET_OPT_PORT), + [IPSET_TEST] = IPSET_FLAG(IPSET_OPT_PORT), + }, + .full = { + [IPSET_CREATE] = IPSET_FLAG(IPSET_OPT_PORT) + | IPSET_FLAG(IPSET_OPT_PORT_TO) + | IPSET_FLAG(IPSET_OPT_TIMEOUT) + | IPSET_FLAG(IPSET_OPT_COUNTERS), + [IPSET_ADD] = IPSET_FLAG(IPSET_OPT_PORT) + | IPSET_FLAG(IPSET_OPT_PORT_TO) + | IPSET_FLAG(IPSET_OPT_TIMEOUT) + | IPSET_FLAG(IPSET_OPT_PACKETS) + | IPSET_FLAG(IPSET_OPT_BYTES), + [IPSET_DEL] = IPSET_FLAG(IPSET_OPT_PORT) + | IPSET_FLAG(IPSET_OPT_PORT_TO), + [IPSET_TEST] = IPSET_FLAG(IPSET_OPT_PORT), + }, + + .usage = bitmap_port_usage1, + .description = "counters support", +}; + void _init(void); void _init(void) { ipset_type_add(&ipset_bitmap_port0); + ipset_type_add(&ipset_bitmap_port1); } |