mirror of
https://gitlab.com/libvirt/libvirt.git
synced 2024-09-09 09:14:57 +00:00
3ea88b568d
* qemud/iptables.[ch]: add code for managing iptables
rules.
* qemud/Makefile.am: add iptables.[ch].
* qemud/qemud.c: add and remove iptables rules as
appropriate.
* qemud/conf.c: when starting a guess, add a rule
allowing it to forward packets across the networks
bridge.
* qemud/internal.h: add iptables context ptr
* configure.in: add --with-iptables-dir and
--with-iptables-prefix to allow us to put our rules
in a chain with the given prefix and save the rules
in files in the given dir so as to integrate with
the proposed "service iptables restart" solution
in:
https://bugzilla.redhat.com/227011
72 lines
3.0 KiB
C
72 lines
3.0 KiB
C
/*
|
|
* Copyright (C) 2007 Red Hat, Inc.
|
|
*
|
|
* This library is free software; you can redistribute it and/or
|
|
* modify it under the terms of the GNU Lesser General Public
|
|
* License as published by the Free Software Foundation; either
|
|
* version 2.1 of the License, or (at your option) any later version.
|
|
*
|
|
* This library is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
* Lesser General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Lesser General Public
|
|
* License along with this library; if not, write to the Free Software
|
|
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
|
|
*
|
|
* Authors:
|
|
* Mark McLoughlin <markmc@redhat.com>
|
|
*/
|
|
|
|
#ifndef __QEMUD_IPTABLES_H__
|
|
#define __QEMUD_IPTABLES_H__
|
|
|
|
typedef struct _iptablesContext iptablesContext;
|
|
|
|
iptablesContext *iptablesContextNew (void);
|
|
void iptablesContextFree (iptablesContext *ctx);
|
|
|
|
int iptablesAddTcpInput (iptablesContext *ctx,
|
|
const char *iface,
|
|
int port);
|
|
int iptablesRemoveTcpInput (iptablesContext *ctx,
|
|
const char *iface,
|
|
int port);
|
|
|
|
int iptablesAddUdpInput (iptablesContext *ctx,
|
|
const char *iface,
|
|
int port);
|
|
int iptablesRemoveUdpInput (iptablesContext *ctx,
|
|
const char *iface,
|
|
int port);
|
|
|
|
int iptablesAddPhysdevForward (iptablesContext *ctx,
|
|
const char *iface);
|
|
int iptablesRemovePhysdevForward (iptablesContext *ctx,
|
|
const char *iface);
|
|
|
|
int iptablesAddInterfaceForward (iptablesContext *ctx,
|
|
const char *iface);
|
|
int iptablesRemoveInterfaceForward (iptablesContext *ctx,
|
|
const char *iface);
|
|
|
|
int iptablesAddStateForward (iptablesContext *ctx,
|
|
const char *iface);
|
|
int iptablesRemoveStateForward (iptablesContext *ctx,
|
|
const char *iface);
|
|
|
|
int iptablesAddNonBridgedMasq (iptablesContext *ctx);
|
|
int iptablesRemoveNonBridgedMasq (iptablesContext *ctx);
|
|
|
|
#endif /* __QEMUD_IPTABLES_H__ */
|
|
|
|
/*
|
|
* Local variables:
|
|
* indent-tabs-mode: nil
|
|
* c-indent-level: 4
|
|
* c-basic-offset: 4
|
|
* tab-width: 4
|
|
* End:
|
|
*/
|