Import IP Filter 3.2.5

1998-05-17 16:29:42 +00:00 · 1998-05-17 16:29:42 +00:00 · d7c5c548fb
parent 8e900f5ee8
commit d7c5c548fb
20 changed files with 42 additions and 42 deletions
--- a/usr.sbin/ipf/ipf/ipf.h
+++ b/usr.sbin/ipf/ipf/ipf.h
@ -1,4 +1,4 @@
-/*	$NetBSD: ipf.h,v 1.1.1.8 1997/11/14 08:03:02 mrg Exp $	*/
+/*	$NetBSD: ipf.h,v 1.1.1.9 1998/05/17 16:29:42 veego Exp $	*/

 /*
 * Copyright (C) 1993-1997 by Darren Reed.
--- a/usr.sbin/ipf/ipf/opt.c
+++ b/usr.sbin/ipf/ipf/opt.c
@ -1,4 +1,4 @@
-/*	$NetBSD: opt.c,v 1.1.1.8 1997/11/14 08:03:01 mrg Exp $	*/
+/*	$NetBSD: opt.c,v 1.1.1.9 1998/05/17 16:29:42 veego Exp $	*/

 /*
 * Copyright (C) 1993-1997 by Darren Reed.
--- a/usr.sbin/ipf/ipfstat/kmem.c
+++ b/usr.sbin/ipf/ipfstat/kmem.c
@ -1,4 +1,4 @@
-/*	$NetBSD: kmem.c,v 1.1.1.8 1997/11/14 08:03:08 mrg Exp $	*/
+/*	$NetBSD: kmem.c,v 1.1.1.9 1998/05/17 16:29:43 veego Exp $	*/

 /*
 * Copyright (C) 1993-1997 by Darren Reed.
--- a/usr.sbin/ipf/ipfstat/kmem.h
+++ b/usr.sbin/ipf/ipfstat/kmem.h
@ -1,4 +1,4 @@
-/*	$NetBSD: kmem.h,v 1.1.1.8 1997/11/14 08:03:10 mrg Exp $	*/
+/*	$NetBSD: kmem.h,v 1.1.1.9 1998/05/17 16:29:44 veego Exp $	*/

 /*
 * Copyright (C) 1993-1997 by Darren Reed.
--- a/usr.sbin/ipf/ipftest/ipft_ef.c
+++ b/usr.sbin/ipf/ipftest/ipft_ef.c
@ -1,4 +1,4 @@
-/*	$NetBSD: ipft_ef.c,v 1.1.1.8 1997/11/14 08:03:19 mrg Exp $	*/
+/*	$NetBSD: ipft_ef.c,v 1.1.1.9 1998/05/17 16:29:45 veego Exp $	*/

 /*
 * Copyright (C) 1993-1997 by Darren Reed.
--- a/usr.sbin/ipf/ipftest/ipft_hx.c
+++ b/usr.sbin/ipf/ipftest/ipft_hx.c
@ -1,4 +1,4 @@
-/*	$NetBSD: ipft_hx.c,v 1.1.1.8 1997/11/14 08:03:26 mrg Exp $	*/
+/*	$NetBSD: ipft_hx.c,v 1.1.1.9 1998/05/17 16:29:45 veego Exp $	*/

 /*
 * Copyright (C) 1995-1997 by Darren Reed.
--- a/usr.sbin/ipf/ipftest/ipft_pc.c
+++ b/usr.sbin/ipf/ipftest/ipft_pc.c
@ -1,4 +1,4 @@
-/*	$NetBSD: ipft_pc.c,v 1.1.1.8 1997/11/14 08:03:22 mrg Exp $	*/
+/*	$NetBSD: ipft_pc.c,v 1.1.1.9 1998/05/17 16:29:45 veego Exp $	*/

 /*
 * Copyright (C) 1993-1997 by Darren Reed.
--- a/usr.sbin/ipf/ipftest/ipft_sn.c
+++ b/usr.sbin/ipf/ipftest/ipft_sn.c
@ -1,4 +1,4 @@
-/*	$NetBSD: ipft_sn.c,v 1.1.1.8 1997/11/14 08:03:17 mrg Exp $	*/
+/*	$NetBSD: ipft_sn.c,v 1.1.1.9 1998/05/17 16:29:44 veego Exp $	*/

 /*
 * Copyright (C) 1993-1997 by Darren Reed.
--- a/usr.sbin/ipf/ipftest/ipft_td.c
+++ b/usr.sbin/ipf/ipftest/ipft_td.c
@ -1,4 +1,4 @@
-/*	$NetBSD: ipft_td.c,v 1.1.1.8 1997/11/14 08:03:20 mrg Exp $	*/
+/*	$NetBSD: ipft_td.c,v 1.1.1.9 1998/05/17 16:29:45 veego Exp $	*/

 /*
 * Copyright (C) 1993-1997 by Darren Reed.
--- a/usr.sbin/ipf/ipftest/ipft_tx.c
+++ b/usr.sbin/ipf/ipftest/ipft_tx.c
@ -1,4 +1,4 @@
-/*	$NetBSD: ipft_tx.c,v 1.1.1.8 1997/11/14 08:03:23 mrg Exp $	*/
+/*	$NetBSD: ipft_tx.c,v 1.1.1.9 1998/05/17 16:29:45 veego Exp $	*/

 /*
 * Copyright (C) 1995-1997 by Darren Reed.
@ -45,7 +45,7 @@

 #if !defined(lint)
 static const char sccsid[] = "@(#)ipft_tx.c	1.7 6/5/96 (C) 1993 Darren Reed";
-static const char rcsid[] = "@(#)Id: ipft_tx.c,v 2.0.2.11.2.1 1997/11/12 10:56:11 darrenr Exp ";
+static const char rcsid[] = "@(#)Id: ipft_tx.c,v 2.0.2.11.2.2 1998/04/08 14:31:16 darrenr Exp ";
 #endif

 extern	int	opts;
@ -91,7 +91,7 @@ int	*resolved;
 			fprintf(stderr, "can't resolve hostname: %s\n", host);
 			return 0;
 		}
-		return np->n_net;
+		return htonl(np->n_net);
 	}
 	return *(u_32_t *)hp->h_addr;
 }
--- a/usr.sbin/ipf/ipftest/ipt.h
+++ b/usr.sbin/ipf/ipftest/ipt.h
@ -1,4 +1,4 @@
-/*	$NetBSD: ipt.h,v 1.1.1.8 1997/11/14 08:03:28 mrg Exp $	*/
+/*	$NetBSD: ipt.h,v 1.1.1.9 1998/05/17 16:29:46 veego Exp $	*/

 /*
 * Copyright (C) 1993-1997 by Darren Reed.
--- a/usr.sbin/ipf/ipftest/misc.c
+++ b/usr.sbin/ipf/ipftest/misc.c
@ -1,4 +1,4 @@
-/*	$NetBSD: misc.c,v 1.1.1.8 1997/11/14 08:03:25 mrg Exp $	*/
+/*	$NetBSD: misc.c,v 1.1.1.9 1998/05/17 16:29:45 veego Exp $	*/

 /*
 * Copyright (C) 1993-1997 by Darren Reed.
--- a/usr.sbin/ipf/ipftest/pcap.h
+++ b/usr.sbin/ipf/ipftest/pcap.h
@ -1,4 +1,4 @@
-/*	$NetBSD: pcap.h,v 1.1.1.5 1997/11/14 08:03:31 mrg Exp $	*/
+/*	$NetBSD: pcap.h,v 1.1.1.6 1998/05/17 16:29:46 veego Exp $	*/

 /*
 * Copyright (C) 1993-1997 by Darren Reed.
--- a/usr.sbin/ipf/ipftest/snoop.h
+++ b/usr.sbin/ipf/ipftest/snoop.h
@ -1,4 +1,4 @@
-/*	$NetBSD: snoop.h,v 1.1.1.8 1997/11/14 08:03:29 mrg Exp $	*/
+/*	$NetBSD: snoop.h,v 1.1.1.9 1998/05/17 16:29:46 veego Exp $	*/

 /*
 * Copyright (C) 1993-1997 by Darren Reed.
--- a/usr.sbin/ipf/ipftest/test/regress/10
+++ b/usr.sbin/ipf/ipftest/test/regress/10
@ -1,18 +1,18 @@
-block in from any to any and not ipopts
-pass in from any to any and not opt sec-class topsecret
-block in from any to any and not opt ssrr,sec-class topsecret
-pass in from any to any and not opt ssrr,sec-class topsecret
-block in from any to any and not opt ts,sec-class topsecret
-pass in from any to any and not opt ts,sec-class topsecret
-block in from any to any and not opt sec-class secret
-pass in from any to any and not opt sec-class secret
-block in from any to any and not opt lsrr,ssrr
-pass in from any to any and not opt lsrr,ssrr
-pass in from any to any and not ipopts
-block in from any to any and not opt lsrr
-pass in from any to any and not opt lsrr
-block in from any to any and not opt ssrr,ts
-pass in from any to any and not opt ssrr,ts
-block in from any to any and not opt rr
-pass in from any to any and not opt rr
-block in from any to any and not opt sec-class topsecret
+block in from any to any with not ipopts
+pass in from any to any with not opt sec-class topsecret
+block in from any to any with not opt ssrr,sec-class topsecret
+pass in from any to any with not opt ssrr,sec-class topsecret
+block in from any to any with not opt ts,sec-class topsecret
+pass in from any to any with not opt ts,sec-class topsecret
+block in from any to any with not opt sec-class secret
+pass in from any to any with not opt sec-class secret
+block in from any to any with not opt lsrr,ssrr
+pass in from any to any with not opt lsrr,ssrr
+pass in from any to any with not ipopts
+block in from any to any with not opt lsrr
+pass in from any to any with not opt lsrr
+block in from any to any with not opt ssrr,ts
+pass in from any to any with not opt ssrr,ts
+block in from any to any with not opt rr
+pass in from any to any with not opt rr
+block in from any to any with not opt sec-class topsecret
--- a/usr.sbin/ipf/ipresend/ipresend.c
+++ b/usr.sbin/ipf/ipresend/ipresend.c
@ -1,4 +1,4 @@
-/*	$NetBSD: ipresend.c,v 1.1.1.5 1997/11/14 08:04:23 mrg Exp $	*/
+/*	$NetBSD: ipresend.c,v 1.1.1.6 1998/05/17 16:29:52 veego Exp $	*/

 /*
 * ipresend.c (C) 1995-1997 Darren Reed
--- a/usr.sbin/ipf/ipsend/iplang.h
+++ b/usr.sbin/ipf/ipsend/iplang.h
@ -1,4 +1,4 @@
-/*	$NetBSD: iplang.h,v 1.1.1.3 1997/11/14 08:04:47 mrg Exp $	*/
+/*	$NetBSD: iplang.h,v 1.1.1.4 1998/05/17 16:29:56 veego Exp $	*/

 /*
 * Copyright (C) 1997 by Darren Reed.
--- a/usr.sbin/ipf/ipsend/iplang.tst
+++ b/usr.sbin/ipf/ipsend/iplang.tst
@ -1,11 +1,11 @@
 #
-interface { ifname le0; mtu 1500; }
+interface { ifname le0; mtu 1500; } ;

 ipv4 {
 	src 1.1.1.1; dst 2.2.2.2;
 	tcp {
 		seq 12345; ack 0; sport 9999; dport 23; flags S; 
 		data { value "abcdef"; } ;
-	}
-}
-send { via 10.1.1.1; }
+	} ;
+} ;
+send { via 10.1.1.1; } ;
--- a/usr.sbin/ipf/ipsend/tcpip.h
+++ b/usr.sbin/ipf/ipsend/tcpip.h
@ -1,4 +1,4 @@
-/*	$NetBSD: tcpip.h,v 1.1.1.3 1997/11/14 08:04:39 mrg Exp $	*/
+/*	$NetBSD: tcpip.h,v 1.1.1.4 1998/05/17 16:29:54 veego Exp $	*/

 /*
 * Copyright (c) 1982, 1986, 1993
--- a/usr.sbin/ipf/rules/example.2
+++ b/usr.sbin/ipf/rules/example.2
@ -1,4 +1,4 @@
 #
 # block all outgoing TCP packets on le0 from any host to port 23 of host bar.
 #
-block out on le0 proto tcp from any to bar/32 port != 23
+block out on le0 proto tcp from any to bar/32 port = 23