1 /* 2 * Copyright (c) 1982, 1986, 1993 3 * The Regents of the University of California. All rights reserved. 4 * 5 * Redistribution and use in source and binary forms, with or without 6 * modification, are permitted provided that the following conditions 7 * are met: 8 * 1. Redistributions of source code must retain the above copyright 9 * notice, this list of conditions and the following disclaimer. 10 * 2. Redistributions in binary form must reproduce the above copyright 11 * notice, this list of conditions and the following disclaimer in the 12 * documentation and/or other materials provided with the distribution. 13 * 3. All advertising materials mentioning features or use of this software 14 * must display the following acknowledgement: 15 * This product includes software developed by the University of 16 * California, Berkeley and its contributors. 17 * 4. Neither the name of the University nor the names of its contributors 18 * may be used to endorse or promote products derived from this software 19 * without specific prior written permission. 20 * 21 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 24 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 31 * SUCH DAMAGE. 32 */ 33 34 /* 35 * pflog headers, at least as they exist now. 36 */ 37 #define PFLOG_IFNAMSIZ 16 38 #define PFLOG_RULESET_NAME_SIZE 16 39 40 /* 41 * Direction values. 42 */ 43 #define PF_INOUT 0 44 #define PF_IN 1 45 #define PF_OUT 2 46 #if defined(__OpenBSD__) 47 #define PF_FWD 3 48 #endif 49 50 /* 51 * Reason values. 52 */ 53 #define PFRES_MATCH 0 54 #define PFRES_BADOFF 1 55 #define PFRES_FRAG 2 56 #define PFRES_SHORT 3 57 #define PFRES_NORM 4 58 #define PFRES_MEMORY 5 59 #define PFRES_TS 6 60 #define PFRES_CONGEST 7 61 #define PFRES_IPOPTIONS 8 62 #define PFRES_PROTCKSUM 9 63 #define PFRES_BADSTATE 10 64 #define PFRES_STATEINS 11 65 #define PFRES_MAXSTATES 12 66 #define PFRES_SRCLIMIT 13 67 #define PFRES_SYNPROXY 14 68 #if defined(__FreeBSD__) 69 #define PFRES_MAPFAILED 15 70 #elif defined(__NetBSD__) 71 #define PFRES_STATELOCKED 15 72 #elif defined(__OpenBSD__) 73 #define PFRES_TRANSLATE 15 74 #define PFRES_NOROUTE 16 75 #elif defined(__APPLE__) 76 #define PFRES_DUMMYNET 15 77 #endif 78 79 /* 80 * Action values. 81 */ 82 #define PF_PASS 0 83 #define PF_DROP 1 84 #define PF_SCRUB 2 85 #define PF_NOSCRUB 3 86 #define PF_NAT 4 87 #define PF_NONAT 5 88 #define PF_BINAT 6 89 #define PF_NOBINAT 7 90 #define PF_RDR 8 91 #define PF_NORDR 9 92 #define PF_SYNPROXY_DROP 10 93 #if defined(__FreeBSD__) 94 #define PF_DEFER 11 95 #define PF_MATCH 12 96 #elif defined(__OpenBSD__) 97 #define PF_DEFER 11 98 #define PF_MATCH 12 99 #define PF_DIVERT 13 100 #define PF_RT 14 101 #define PF_AFRT 15 102 #elif defined(__APPLE__) 103 #define PF_DUMMYNET 11 104 #define PF_NODUMMYNET 12 105 #define PF_NAT64 13 106 #define PF_NONAT64 14 107 #endif 108 109 struct pf_addr { 110 union { 111 nd_ipv4 v4; 112 nd_ipv6 v6; 113 } pfa; /* 128-bit address */ 114 #define v4 pfa.v4 115 #define v6 pfa.v6 116 }; 117 118 struct pfloghdr { 119 uint8_t length; 120 uint8_t af; 121 uint8_t action; 122 uint8_t reason; 123 char ifname[PFLOG_IFNAMSIZ]; 124 char ruleset[PFLOG_RULESET_NAME_SIZE]; 125 uint32_t rulenr; 126 uint32_t subrulenr; 127 uint32_t uid; 128 int32_t pid; 129 uint32_t rule_uid; 130 int32_t rule_pid; 131 uint8_t dir; 132 #if defined(__OpenBSD__) 133 uint8_t rewritten; 134 uint8_t naf; 135 uint8_t pad[1]; 136 #else 137 uint8_t pad[3]; 138 #endif 139 #if defined(__FreeBSD__) 140 uint32_t ridentifier; 141 uint8_t reserve; 142 uint8_t pad2[3]; 143 #elif defined(__OpenBSD__) 144 struct pf_addr saddr; 145 struct pf_addr daddr; 146 uint16_t sport; 147 uint16_t dport; 148 #endif 149 }; 150 151 152 153