1 /* Shared library add-on to iptables for NFQ
3 * (C) 2005 by Harald Welte <laforge@netfilter.org>
5 * This program is distributed under the terms of GNU GPL v2, 1991
14 #include <linux/netfilter_ipv4/ip_tables.h>
15 #include <linux/netfilter_ipv4/ipt_NFQUEUE.h>
17 static void init(struct ipt_entry_target
*t
, unsigned int *nfcache
)
21 static void help(void)
24 "NFQUEUE target options\n"
25 " --queue-num value Send packet to QUEUE number <value>.\n"
26 " Valid queue numbers are 0-65535\n"
30 static struct option opts
[] = {
31 { "queue-num", 1, 0, 'F' },
36 parse_num(const char *s
, struct ipt_NFQ_info
*tinfo
)
40 if (string_to_number(s
, 0, 65535, &num
) == -1)
41 exit_error(PARAMETER_PROBLEM
,
42 "Invalid queue number `%s'\n", s
);
44 tinfo
->queuenum
= num
& 0xffff;
49 parse(int c
, char **argv
, int invert
, unsigned int *flags
,
50 const struct ipt_entry
*entry
,
51 struct ipt_entry_target
**target
)
53 struct ipt_NFQ_info
*tinfo
54 = (struct ipt_NFQ_info
*)(*target
)->data
;
59 exit_error(PARAMETER_PROBLEM
, "NFQUEUE target: "
60 "Only use --queue-num ONCE!");
61 parse_num(optarg
, tinfo
);
71 final_check(unsigned int flags
)
75 /* Prints out the targinfo. */
77 print(const struct ipt_ip
*ip
,
78 const struct ipt_entry_target
*target
,
81 const struct ipt_NFQ_info
*tinfo
=
82 (const struct ipt_NFQ_info
*)target
->data
;
83 printf("NFQUEUE num %u", tinfo
->queuenum
);
86 /* Saves the union ipt_targinfo in parsable form to stdout. */
88 save(const struct ipt_ip
*ip
, const struct ipt_entry_target
*target
)
90 const struct ipt_NFQ_info
*tinfo
=
91 (const struct ipt_NFQ_info
*)target
->data
;
93 printf("--queue-num %u ", tinfo
->queuenum
);
96 static struct iptables_target nfqueue
= {
99 .version
= IPTABLES_VERSION
,
100 .size
= IPT_ALIGN(sizeof(struct ipt_NFQ_info
)),
101 .userspacesize
= IPT_ALIGN(sizeof(struct ipt_NFQ_info
)),
105 .final_check
= &final_check
,
113 register_target(&nfqueue
);