diff options
| author | Mike Frantzen <frantzen@cvs.openbsd.org> | 2002-03-25 22:03:02 +0000 |
|---|---|---|
| committer | Mike Frantzen <frantzen@cvs.openbsd.org> | 2002-03-25 22:03:02 +0000 |
| commit | 89db73fcfbfdf3a4b8dd0dc89403d028a8d26d6d (patch) | |
| tree | 12500feb4890e55fe5c57e9df4745249d4c183b2 /sys/net/pfvar.h | |
| parent | 1004f5733a9c92f16ca07bfe7ba3b3fb5f6386f7 (diff) | |
add ioctl DIOCKILLSTATES to shootdown a subset of the state table. allows
discrimination on src/dst ips and netmask, src/dst port range and protocol.
ok dhartmei@
Diffstat (limited to 'sys/net/pfvar.h')
| -rw-r--r-- | sys/net/pfvar.h | 11 |
1 files changed, 10 insertions, 1 deletions
diff --git a/sys/net/pfvar.h b/sys/net/pfvar.h index 9cb88d8538a..051c40d2155 100644 --- a/sys/net/pfvar.h +++ b/sys/net/pfvar.h @@ -1,4 +1,4 @@ -/* $OpenBSD: pfvar.h,v 1.64 2002/02/26 07:25:33 dhartmei Exp $ */ +/* $OpenBSD: pfvar.h,v 1.65 2002/03/25 22:03:01 frantzen Exp $ */ /* * Copyright (c) 2001 Daniel Hartmeier @@ -495,6 +495,14 @@ struct pfioc_state { struct pf_state state; }; +struct pfioc_state_kill { + /* XXX returns the number of states killed in psk_af */ + int psk_af; + int psk_proto; + struct pf_rule_addr psk_src; + struct pf_rule_addr psk_dst; +}; + struct pfioc_states { int ps_len; union { @@ -563,6 +571,7 @@ struct pfioc_limit { #define DIOCCLRRULECTRS _IO ('D', 38) #define DIOCGETLIMIT _IOWR('D', 39, struct pfioc_limit) #define DIOCSETLIMIT _IOWR('D', 40, struct pfioc_limit) +#define DIOCKILLSTATES _IOWR('D', 41, struct pfioc_state_kill) #ifdef _KERNEL |