1
2 #include <sys/types.h>
3 #include <sys/socket.h>
4 #include <fcntl.h>
5 #include <sys/ioctl.h>
6 #include <stdio.h>
7 #include <stdlib.h>
8 #include <netinet/in.h>
9 #include <net/if.h>
10 #include "ip_compat.h"
11 #include "ip_fil.h"
12 #include "ip_auth.h"
13
14 extern int errno;
15
main()16 main()
17 {
18 struct frauth fra;
19 struct frauth *frap = &fra;
20 fr_info_t *fin = &fra.fra_info;
21 fr_ip_t *fi = &fin->fin_fi;
22 char yn[16];
23 int fd;
24
25 fd = open(IPL_NAME, O_RDWR);
26 fra.fra_len = 0;
27 fra.fra_buf = NULL;
28 while (ioctl(fd, SIOCAUTHW, &frap) == 0) {
29 if (fra.fra_info.fin_out)
30 fra.fra_pass = FR_OUTQUE;
31 else
32 fra.fra_pass = FR_INQUE;
33
34 printf("%s ", inet_ntoa(fi->fi_src));
35 if (fi->fi_flx & FI_TCPUDP)
36 printf("port %d ", fin->fin_data[0]);
37 printf("-> %s ", inet_ntoa(fi->fi_dst));
38 if (fi->fi_flx & FI_TCPUDP)
39 printf("port %d ", fin->fin_data[1]);
40 printf("\n");
41 printf("Allow packet through ? [y/n]");
42 fflush(stdout);
43 if (!fgets(yn, sizeof(yn), stdin))
44 break;
45 fflush(stdin);
46 if (yn[0] == 'n' || yn[0] == 'N')
47 fra.fra_pass |= FR_BLOCK;
48 else if (yn[0] == 'y' || yn[0] == 'Y') {
49 fra.fra_pass |= FR_PASS;
50 if (fra.fra_info.fin_fi.fi_flx & FI_TCPUDP)
51 fra.fra_pass |= FR_KEEPSTATE;
52 } else
53 fra.fra_pass |= FR_NOMATCH;
54 printf("answer = %c (%x), id %d idx %d\n", yn[0],
55 fra.fra_pass, fra.fra_info.fin_id, fra.fra_index);
56 if (ioctl(fd, SIOCAUTHR, &frap) != 0)
57 perror("SIOCAUTHR");
58 }
59 fprintf(stderr, "errno=%d \n", errno);
60 perror("frauth-SIOCAUTHW");
61 }
62