2 * Copyright (c) 2016 The DragonFly Project. All rights reserved.
4 * This code is derived from software contributed to The DragonFly Project
5 * by Bill Yuan <bycn82@dragonflybsd.org>
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
11 * 1. Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in
15 * the documentation and/or other materials provided with the
17 * 3. Neither the name of The DragonFly Project nor the names of its
18 * contributors may be used to endorse or promote products derived
19 * from this software without specific, prior written permission.
21 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
22 * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
23 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS
24 * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
25 * COPYRIGHT HOLDERS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,
26 * INCIDENTAL, SPECIAL, EXEMPLARY OR CONSEQUENTIAL DAMAGES (INCLUDING,
27 * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
28 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED
29 * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
30 * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
31 * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
35 #include <sys/param.h>
37 #include <sys/socket.h>
38 #include <sys/sockio.h>
39 #include <sys/sysctl.h>
43 #include <arpa/inet.h>
61 #include <netinet/in.h>
62 #include <netinet/in_systm.h>
63 #include <netinet/ip.h>
64 #include <netinet/ip_icmp.h>
65 #include <netinet/tcp.h>
67 #include <net/if_dl.h>
68 #include <net/route.h>
69 #include <net/ethernet.h>
71 #include "../../sys/net/ipfw3/ip_fw3.h"
72 #include "../../sys/net/ipfw3/ip_fw3_table.h"
73 #include "../../sys/net/ipfw3/ip_fw3_sync.h"
74 #include "../../sys/net/dummynet3/ip_dummynet3.h"
75 #include "../../sys/net/libalias/alias.h"
76 #include "../../sys/net/ipfw3_basic/ip_fw3_basic.h"
77 #include "../../sys/net/ipfw3_nat/ip_fw3_nat.h"
80 #include "ipfw3sync.h"
83 sync_config_edge(int ac, char *av[])
85 struct ipfw_ioc_sync_edge ioc_edge;
88 ioc_edge.port = atoi(*av);
89 if (ioc_edge.port == 0) {
90 errx(EX_USAGE, "invalid edge port `%s'", *av);
93 if (strcmp(*av, "all") == 0) {
98 if(do_set_x(IP_FW_SYNC_EDGE_CONF,
99 &ioc_edge, sizeof(ioc_edge)) < 0) {
100 err(EX_UNAVAILABLE, "do_set_x(IP_FW_SYNC_EDGE_CONF)");
103 errx(EX_USAGE, "invalid edge port `%s'", *av);
108 sync_config_centre(int ac, char *av[])
110 struct ipfw_ioc_sync_centre *centre;
111 struct ipfw_sync_edge *edge;
115 int count = 0, step = 10, len, data_len;
120 tok = strtok(*av, ",");
123 data_len = len + step * sizeof(struct ipfw_sync_edge);
124 data = malloc(data_len);
125 centre = (struct ipfw_ioc_sync_centre *)data;
126 edge = centre->edges;
127 while (tok != NULL) {
128 str = strchr(tok,':');
131 edge->port = (u_short)strtoul(str, NULL, 0);
132 if (edge->port == 0) {
133 errx(EX_USAGE, "edge `%s:%s' invalid",
137 err(EX_UNAVAILABLE, "dst invalid");
139 inet_aton(tok, &addr);
140 edge->addr = addr.s_addr;
143 data_len = len + step * sizeof(struct ipfw_sync_edge);
144 if ((data = realloc(data, data_len)) == NULL) {
145 err(EX_OSERR, "realloc in config sync centre");
149 tok = strtok (NULL, ",");
153 if (count > MAX_EDGES) {
154 err(EX_OSERR,"too much edges");
156 centre->count = count;
157 len += count * sizeof(struct ipfw_sync_edge);
158 if(do_set_x(IP_FW_SYNC_CENTRE_CONF, data, len) < 0) {
159 err(EX_UNAVAILABLE, "do_set_x(IP_FW_SYNC_CENTRE_CONF)");
165 sync_show_config(int ac, char *av[])
168 int nalloc = 1000, nbytes;
171 while (nbytes >= nalloc) {
172 nalloc = nalloc * 2 + 321;
175 if ((data = malloc(nbytes)) == NULL) {
176 err(EX_OSERR, "malloc");
178 } else if ((data = realloc(data, nbytes)) == NULL) {
179 err(EX_OSERR, "realloc");
181 if (do_get_x(IP_FW_SYNC_SHOW_CONF, data, &nbytes) < 0) {
182 err(EX_OSERR, "getsockopt(IP_FW_SYNC_SHOW_CONF)");
185 struct ipfw_ioc_sync_context *sync_ctx;
186 sync_ctx = (struct ipfw_ioc_sync_context *)data;
187 if (sync_ctx->edge_port != 0) {
188 printf("ipfw3sync edge on %d %s\n", sync_ctx->edge_port,
189 sync_ctx->hw_same == 1 ? "all" : "");
191 if (sync_ctx->count > 0) {
192 struct ipfw_sync_edge *edge;
195 edge = sync_ctx->edges;
196 printf("ipfw3sync centre to %d edge(s)\n", sync_ctx->count);
197 for (i = 0; i < sync_ctx->count; i++) {
199 in.s_addr = edge->addr;
200 printf("edge on %s:%d\n", inet_ntoa(in), edge->port);
208 sync_show_status(int ac, char *av[])
211 len = sizeof(running);
212 if (do_get_x(IP_FW_SYNC_SHOW_STATUS, &running, &len) < 0) {
213 err(EX_OSERR, "getsockopt(IP_FW_SYNC_SHOW_STATUS)");
216 printf("edge is running\n");
219 printf("centre is running\n");
224 sync_edge_start(int ac, char *av[])
227 if(do_set_x(IP_FW_SYNC_EDGE_START, &i, sizeof(i)) < 0) {
228 err(EX_UNAVAILABLE, "do_set_x(IP_FW_SYNC_EDGE_START)");
233 sync_centre_start(int ac, char *av[])
236 if(do_set_x(IP_FW_SYNC_CENTRE_START, &i, sizeof(i)) < 0) {
237 err(EX_UNAVAILABLE, "do_set_x(IP_FW_SYNC_CENTRE_START)");
242 sync_edge_stop(int ac, char *av[])
245 if(do_set_x(IP_FW_SYNC_EDGE_STOP, &i, sizeof(i)) < 0) {
246 err(EX_UNAVAILABLE, "do_set_x(IP_FW_SYNC_EDGE_STOP)");
251 sync_centre_stop(int ac, char *av[])
254 if(do_set_x(IP_FW_SYNC_CENTRE_STOP, &i, sizeof(i)) < 0) {
255 err(EX_UNAVAILABLE, "do_set_x(IP_FW_SYNC_CENTRE_STOP");
260 sync_edge_clear(int ac, char *av[])
263 if(do_set_x(IP_FW_SYNC_EDGE_CLEAR, &i, sizeof(i)) < 0) {
264 err(EX_UNAVAILABLE, "do_set_x(IP_FW_SYNC_EDGE_CLEAR)");
269 sync_centre_clear(int ac, char *av[])
272 if(do_set_x(IP_FW_SYNC_CENTRE_CLEAR, &i, sizeof(i)) < 0) {
273 err(EX_UNAVAILABLE, "do_set_x(IP_FW_SYNC_CENTRE_CLEAR)");
278 sync_edge_test(int ac, char *av[])
281 if(do_set_x(IP_FW_SYNC_EDGE_TEST, &i, sizeof(i)) < 0) {
282 err(EX_UNAVAILABLE, "do_set_x(IP_FW_SYNC_EDGE_CLEAR)");
287 sync_centre_test(int ac, char *av[])
291 if (!isdigit(**av)) {
292 errx(EX_DATAERR, "invalid test number %s\n", *av);
295 if(do_set_x(IP_FW_SYNC_CENTRE_TEST, &n, sizeof(n)) < 0) {
296 err(EX_UNAVAILABLE, "do_set_x(IP_FW_SYNC_CENTRE_TEST)");
298 printf("centre test %d sent\n", n);