2 * Copyright (C) 1997-2001 by Darren Reed.
4 * See the IPFILTER.LICENCE file for details on licencing.
6 * $Id: ip_proxy.h,v 2.8.2.13 2002/07/04 11:07:37 darrenr Exp $
7 * $FreeBSD: src/sys/contrib/ipfilter/netinet/ip_proxy.h,v 1.9.2.5 2003/03/01 03:55:54 darrenr Exp $
8 * $DragonFly: src/sys/contrib/ipfilter/netinet/ip_proxy.h,v 1.2 2003/06/17 04:28:20 dillon Exp $
11 #ifndef __IP_PROXY_H__
12 #define __IP_PROXY_H__
15 #define SOLARIS (defined(sun) && (defined(__svr4__) || defined(__SVR4)))
19 #define APR_LABELLEN 16
21 #define AP_SESS_SIZE 53
26 typedef struct ap_tcp {
27 u_short apt_sport; /* source port */
28 u_short apt_dport; /* destination port */
29 short apt_sel[2]; /* {seq,ack}{off,min} set selector */
30 short apt_seqoff[2]; /* sequence # difference */
31 tcp_seq apt_seqmin[2]; /* don't change seq-off until after this */
32 short apt_ackoff[2]; /* sequence # difference */
33 tcp_seq apt_ackmin[2]; /* don't change seq-off until after this */
34 u_char apt_state[2]; /* connection state */
37 typedef struct ap_udp {
38 u_short apu_sport; /* source port */
39 u_short apu_dport; /* destination port */
42 typedef struct ap_session {
43 struct aproxy *aps_apr;
45 struct ap_tcp apu_tcp;
46 struct ap_udp apu_udp;
49 U_QUAD_T aps_bytes; /* bytes sent */
50 U_QUAD_T aps_pkts; /* packets sent */
51 void *aps_nat; /* pointer back to nat struct */
52 void *aps_data; /* private data */
53 int aps_p; /* protocol */
54 int aps_psiz; /* size of private data */
55 struct ap_session *aps_hnext;
56 struct ap_session *aps_next;
59 #define aps_sport aps_un.apu_tcp.apt_sport
60 #define aps_dport aps_un.apu_tcp.apt_dport
61 #define aps_sel aps_un.apu_tcp.apt_sel
62 #define aps_seqoff aps_un.apu_tcp.apt_seqoff
63 #define aps_seqmin aps_un.apu_tcp.apt_seqmin
64 #define aps_state aps_un.apu_tcp.apt_state
65 #define aps_ackoff aps_un.apu_tcp.apt_ackoff
66 #define aps_ackmin aps_un.apu_tcp.apt_ackmin
69 typedef struct aproxy {
70 struct aproxy *apr_next;
71 char apr_label[APR_LABELLEN]; /* Proxy label # */
72 u_char apr_p; /* protocol */
73 int apr_ref; /* +1 per rule referencing it */
75 int (* apr_init) __P((void));
76 void (* apr_fini) __P((void));
77 int (* apr_new) __P((fr_info_t *, ip_t *,
78 ap_session_t *, struct nat *));
79 void (* apr_del) __P((ap_session_t *));
80 int (* apr_inpkt) __P((fr_info_t *, ip_t *,
81 ap_session_t *, struct nat *));
82 int (* apr_outpkt) __P((fr_info_t *, ip_t *,
83 ap_session_t *, struct nat *));
84 int (* apr_match) __P((fr_info_t *, ap_session_t *, struct nat *));
89 #define APR_ERR(x) (((x) & 0xffff) << 16)
90 #define APR_EXIT(x) (((x) >> 16) & 0xffff)
91 #define APR_INC(x) ((x) & 0xffff)
97 typedef struct ftpside {
105 char ftps_buf[FTP_BUFSZ];
108 typedef struct ftpinfo {
111 ftpside_t ftp_side[2];
115 * Real audio proxy structure and #defines
117 typedef struct raudio_s {
121 int rap_eos; /* End Of Startup */
130 u_32_t rap_sbf; /* flag to indicate which of the 19 bytes have
138 #define RA_ID_ROBUST 7
141 #define RAP_M_ROBUST 2
143 #define RAP_M_UDP_ROBUST (RAP_M_UDP|RAP_M_ROBUST)
148 typedef u_32_t ipsec_cookie_t[2];
150 typedef struct ipsec_pxy {
151 ipsec_cookie_t ipsc_icookie;
152 ipsec_cookie_t ipsc_rcookie;
156 ipstate_t *ipsc_state;
159 extern ap_session_t *ap_sess_tab[AP_SESS_SIZE];
160 extern ap_session_t *ap_sess_list;
161 extern aproxy_t ap_proxies[];
162 extern int ippr_ftp_pasvonly;
164 extern int appr_add __P((aproxy_t *));
165 extern int appr_del __P((aproxy_t *));
166 extern int appr_init __P((void));
167 extern void appr_unload __P((void));
168 extern int appr_ok __P((ip_t *, tcphdr_t *, struct ipnat *));
169 extern int appr_match __P((fr_info_t *, struct nat *));
170 extern void appr_free __P((aproxy_t *));
171 extern void aps_free __P((ap_session_t *));
172 extern int appr_check __P((ip_t *, fr_info_t *, struct nat *));
173 extern aproxy_t *appr_lookup __P((u_int, char *));
174 extern int appr_new __P((fr_info_t *, ip_t *, struct nat *));
176 #endif /* __IP_PROXY_H__ */