2 * Copyright (c) 2016 The DragonFly Project. All rights reserved.
4 * This code is derived from software contributed to The DragonFly Project
5 * by Bill Yuan <bycn82@dragonflybsd.org>
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
11 * 1. Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in
15 * the documentation and/or other materials provided with the
17 * 3. Neither the name of The DragonFly Project nor the names of its
18 * contributors may be used to endorse or promote products derived
19 * from this software without specific, prior written permission.
21 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
22 * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
23 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS
24 * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
25 * COPYRIGHT HOLDERS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,
26 * INCIDENTAL, SPECIAL, EXEMPLARY OR CONSEQUENTIAL DAMAGES (INCLUDING,
27 * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
28 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED
29 * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
30 * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
31 * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
35 #include <sys/param.h>
37 #include <sys/socket.h>
38 #include <sys/sockio.h>
39 #include <sys/sysctl.h>
43 #include <arpa/inet.h>
61 #include <netinet/in.h>
62 #include <netinet/in_systm.h>
63 #include <netinet/ip.h>
64 #include <netinet/ip_icmp.h>
65 #include <netinet/tcp.h>
67 #include <net/if_dl.h>
68 #include <net/route.h>
69 #include <net/ethernet.h>
71 #include "../../sys/net/ipfw3/ip_fw3.h"
72 #include "../../sys/net/ipfw3/ip_fw3_table.h"
73 #include "../../sys/net/ipfw3/ip_fw3_sync.h"
74 #include "../../sys/net/dummynet3/ip_dummynet3.h"
75 #include "../../sys/net/libalias/alias.h"
76 #include "../../sys/net/ipfw3_basic/ip_fw3_basic.h"
77 #include "../../sys/net/ipfw3_nat/ip_fw3_nat.h"
80 #include "ipfw3sync.h"
83 sync_config_edge(int ac
, char *av
[])
85 struct ipfw_ioc_sync_edge ioc_edge
;
88 ioc_edge
.port
= atoi(*av
);
89 if (ioc_edge
.port
== 0) {
90 errx(EX_USAGE
, "invalid edge port `%s'", *av
);
93 if (strcmp(*av
, "all") == 0) {
98 if(do_set_x(IP_FW_SYNC_EDGE_CONF
,
99 &ioc_edge
, sizeof(ioc_edge
)) < 0) {
100 err(EX_UNAVAILABLE
, "do_set_x(IP_FW_SYNC_EDGE_CONF)");
103 errx(EX_USAGE
, "invalid edge port `%s'", *av
);
108 sync_config_centre(int ac
, char *av
[])
110 struct ipfw_ioc_sync_centre
*centre
;
111 struct ipfw_sync_edge
*edge
;
115 int count
= 0, step
= 10, len
, data_len
;
120 tok
= strtok(*av
, ",");
123 data_len
= len
+ step
* sizeof(struct ipfw_sync_edge
);
124 data
= malloc(data_len
);
125 centre
= (struct ipfw_ioc_sync_centre
*)data
;
126 edge
= centre
->edges
;
127 while (tok
!= NULL
) {
128 str
= strchr(tok
,':');
131 edge
->port
= (u_short
)strtoul(str
, NULL
, 0);
132 if (edge
->port
== 0) {
133 errx(EX_USAGE
, "edge `%s:%s' invalid",
137 err(EX_UNAVAILABLE
, "dst invalid");
139 inet_aton(tok
, &addr
);
140 edge
->addr
= addr
.s_addr
;
143 data_len
= len
+ step
* sizeof(struct ipfw_sync_edge
);
144 if ((data
= realloc(data
, data_len
)) == NULL
) {
145 err(EX_OSERR
, "realloc in config sync centre");
149 tok
= strtok (NULL
, ",");
153 if (count
> MAX_EDGES
) {
154 err(EX_OSERR
,"too much edges");
156 centre
->count
= count
;
157 len
+= count
* sizeof(struct ipfw_sync_edge
);
158 if(do_set_x(IP_FW_SYNC_CENTRE_CONF
, data
, len
) < 0) {
159 err(EX_UNAVAILABLE
, "do_set_x(IP_FW_SYNC_CENTRE_CONF)");
165 sync_show_config(int ac
, char *av
[])
168 int nalloc
= 1000, nbytes
;
171 while (nbytes
>= nalloc
) {
172 nalloc
= nalloc
* 2 + 321;
175 if ((data
= malloc(nbytes
)) == NULL
) {
176 err(EX_OSERR
, "malloc");
178 } else if ((data
= realloc(data
, nbytes
)) == NULL
) {
179 err(EX_OSERR
, "realloc");
181 if (do_get_x(IP_FW_SYNC_SHOW_CONF
, data
, &nbytes
) < 0) {
182 err(EX_OSERR
, "getsockopt(IP_FW_SYNC_SHOW_CONF)");
185 struct ipfw_ioc_sync_context
*sync_ctx
;
186 sync_ctx
= (struct ipfw_ioc_sync_context
*)data
;
187 if (sync_ctx
->edge_port
!= 0) {
188 printf("ipfw3sync edge on %d %s\n", sync_ctx
->edge_port
,
189 sync_ctx
->hw_same
== 1 ? "all" : "");
191 if (sync_ctx
->count
> 0) {
192 struct ipfw_sync_edge
*edge
;
195 edge
= sync_ctx
->edges
;
196 printf("ipfw3sync centre to %d edge(s)\n", sync_ctx
->count
);
197 for (i
= 0; i
< sync_ctx
->count
; i
++) {
199 in
.s_addr
= edge
->addr
;
200 printf("edge on %s:%d\n", inet_ntoa(in
), edge
->port
);
208 sync_show_status(int ac
, char *av
[])
211 len
= sizeof(running
);
212 if (do_get_x(IP_FW_SYNC_SHOW_STATUS
, &running
, &len
) < 0) {
213 err(EX_OSERR
, "getsockopt(IP_FW_SYNC_SHOW_STATUS)");
216 printf("edge is running\n");
219 printf("centre is running\n");
224 sync_edge_start(int ac
, char *av
[])
227 if(do_set_x(IP_FW_SYNC_EDGE_START
, &i
, sizeof(i
)) < 0) {
228 err(EX_UNAVAILABLE
, "do_set_x(IP_FW_SYNC_EDGE_START)");
233 sync_centre_start(int ac
, char *av
[])
236 if(do_set_x(IP_FW_SYNC_CENTRE_START
, &i
, sizeof(i
)) < 0) {
237 err(EX_UNAVAILABLE
, "do_set_x(IP_FW_SYNC_CENTRE_START)");
242 sync_edge_stop(int ac
, char *av
[])
245 if(do_set_x(IP_FW_SYNC_EDGE_STOP
, &i
, sizeof(i
)) < 0) {
246 err(EX_UNAVAILABLE
, "do_set_x(IP_FW_SYNC_EDGE_STOP)");
251 sync_centre_stop(int ac
, char *av
[])
254 if(do_set_x(IP_FW_SYNC_CENTRE_STOP
, &i
, sizeof(i
)) < 0) {
255 err(EX_UNAVAILABLE
, "do_set_x(IP_FW_SYNC_CENTRE_STOP");
260 sync_edge_clear(int ac
, char *av
[])
263 if(do_set_x(IP_FW_SYNC_EDGE_CLEAR
, &i
, sizeof(i
)) < 0) {
264 err(EX_UNAVAILABLE
, "do_set_x(IP_FW_SYNC_EDGE_CLEAR)");
269 sync_centre_clear(int ac
, char *av
[])
272 if(do_set_x(IP_FW_SYNC_CENTRE_CLEAR
, &i
, sizeof(i
)) < 0) {
273 err(EX_UNAVAILABLE
, "do_set_x(IP_FW_SYNC_CENTRE_CLEAR)");
278 sync_edge_test(int ac
, char *av
[])
281 if(do_set_x(IP_FW_SYNC_EDGE_TEST
, &i
, sizeof(i
)) < 0) {
282 err(EX_UNAVAILABLE
, "do_set_x(IP_FW_SYNC_EDGE_CLEAR)");
287 sync_centre_test(int ac
, char *av
[])
291 if (!isdigit(**av
)) {
292 errx(EX_DATAERR
, "invalid test number %s\n", *av
);
295 if(do_set_x(IP_FW_SYNC_CENTRE_TEST
, &n
, sizeof(n
)) < 0) {
296 err(EX_UNAVAILABLE
, "do_set_x(IP_FW_SYNC_CENTRE_TEST)");
298 printf("centre test %d sent\n", n
);