add support for relaying DNS traffic (with a little bit of packet

header randomization). this adds an infrastructure to support
UDP-based protocols.

ok gilles@, tested by some

1 files changed, 19 insertions, 3 deletions

diff --git a/usr.sbin/relayd/relayd.conf.5 b/usr.sbin/relayd/relayd.conf.5
index 71f13ba1199..8bc3d443978 100644
--- a/usr.sbin/relayd/relayd.conf.5
+++ b/usr.sbin/relayd/relayd.conf.5
@@ -1,4 +1,4 @@
-.\"	$OpenBSD: relayd.conf.5,v 1.48 2007/09/05 09:15:10 reyk Exp $
+.\"	$OpenBSD: relayd.conf.5,v 1.49 2007/09/10 11:59:22 reyk Exp $
 .\"
 .\" Copyright (c) 2006, 2007 Reyk Floeter <reyk@openbsd.org>
 .\" Copyright (c) 2006, 2007 Pierre-Yves Ritschard <pyr@spootnik.org>
@@ -15,7 +15,7 @@
 .\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
 .\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
 .\"
-.Dd $Mdocdate: September 5 2007 $
+.Dd $Mdocdate: September 10 2007 $
 .Dt HOSTSTATED.CONF 5
 .Os
 .Sh NAME
@@ -459,7 +459,7 @@ The protocol configuration directives are described below.
 .Bl -tag -width Ds
 .It Ic protocol Ar type
 Enable special handling of the specified application layer protocol.
-The supported protocols are:
+The supported TCP protocols are:
 .Pp
 .Bl -tag -width http -offset indent -compact
 .It Ic http
@@ -468,6 +468,22 @@ Handle the Hypertext Transfer Protocol
 .It Ic tcp
 Generic handler for TCP-based protocols.
 .El
+.Pp
+.Xr hoststated 8
+also supports relaying of UDP protocols.
+There is no generic handler for UDP-based protocols because it is a
+stateless datagram-based protocol which requires to look into the
+application layer protocol to find any possible state information.
+The supported UDP protocols are:
+.Pp
+.Bl -tag -width http -offset indent -compact
+.It Ic dns
+Domain Name System (DNS) protocol.
+The request IDs in the DNS header will be used to match the state.
+.Xr hoststated 8
+will replace these IDs with random values to compensate for
+predictable values generated by some hosts.
+.El
 .It Xo
 .Op Ar direction
 .Op Ar type