Is there an API for ipfw?
Bruce M Simpson
bms at spc.org
Thu Mar 30 23:52:11 UTC 2006
On Thu, Mar 30, 2006 at 04:57:42PM -0500, Mikhail Teterin wrote:
> Is there any way to create/alter such a pipe from a C-program without using
> system("ipfw ....")?
XORP has a module for IPFW2 which micro-assembles IPFW2 instruction
sequences on the fly from a relatively simple filtering rule representation
which is internal to the XORP FEA.
This is however written in C++ but it might give you some ideas about how
to go about doing what you need to do -- particularly the code comments.
See: http://xorpc.icir.org/cgi-bin/cvsweb.cgi/xorp/fea/pa_backend_ipfw2.cc?rev=1.8&content-type=text/x-cvsweb-markup
...particularly PaIpfw2Backend::transcribe_rule4().
Regards,
BMS
More information about the freebsd-net
mailing list