static void __multiport_parse(struct xt_option_call *cb, uint16_t pnum,
uint8_t invflags)
{
const char *proto;
struct xt_multiport *multiinfo = cb->data;
xtables_option_parse(cb);
switch (cb->entry->id) {
case O_SOURCE_PORTS:
proto = check_proto(pnum, invflags);
multiinfo->count = parse_multi_ports(cb->arg,
multiinfo->ports, proto);
multiinfo->flags = XT_MULTIPORT_SOURCE;
break;
case O_DEST_PORTS:
proto = check_proto(pnum, invflags);
multiinfo->count = parse_multi_ports(cb->arg,
multiinfo->ports, proto);
multiinfo->flags = XT_MULTIPORT_DESTINATION;
break;
case O_SD_PORTS:
proto = check_proto(pnum, invflags);
multiinfo->count = parse_multi_ports(cb->arg,
multiinfo->ports, proto);
multiinfo->flags = XT_MULTIPORT_EITHER;
break;
}
if (cb->invert)
xtables_error(PARAMETER_PROBLEM,
"multiport.0 does not support invert");
}
static int
parse(int c, char **argv, int invert, unsigned int *flags,
const struct ipt_entry *entry,
unsigned int *nfcache,
struct ipt_entry_match **match)
{
const char *proto;
struct ipt_multiport *multiinfo
= (struct ipt_multiport *)(*match)->data;
switch (c) {
case '1':
check_inverse(argv[optind-1], &invert, &optind, 0);
proto = check_proto(entry);
multiinfo->count = parse_multi_ports(argv[optind-1],
multiinfo->ports, proto);
multiinfo->flags = IPT_MULTIPORT_SOURCE;
break;
case '2':
check_inverse(argv[optind-1], &invert, &optind, 0);
proto = check_proto(entry);
multiinfo->count = parse_multi_ports(argv[optind-1],
multiinfo->ports, proto);
multiinfo->flags = IPT_MULTIPORT_DESTINATION;
break;
case '3':
check_inverse(argv[optind-1], &invert, &optind, 0);
proto = check_proto(entry);
multiinfo->count = parse_multi_ports(argv[optind-1],
multiinfo->ports, proto);
multiinfo->flags = IPT_MULTIPORT_EITHER;
break;
default:
return 0;
}
if (invert)
exit_error(PARAMETER_PROBLEM,
"multiport does not support invert");
if (*flags)
exit_error(PARAMETER_PROBLEM,
"multiport can only have one option");
*flags = 1;
return 1;
}
/* Function which parses command options; returns true if it
ate an option */
static int
__multiport_parse(int c, char **argv, int invert, unsigned int *flags,
struct xt_entry_match **match, u_int16_t pnum,
u_int8_t invflags)
{
const char *proto;
struct xt_multiport *multiinfo
= (struct xt_multiport *)(*match)->data;
switch (c) {
case '1':
xtables_check_inverse(optarg, &invert, &optind, 0, argv);
proto = check_proto(pnum, invflags);
multiinfo->count = parse_multi_ports(optarg,
multiinfo->ports, proto);
multiinfo->flags = XT_MULTIPORT_SOURCE;
break;
case '2':
xtables_check_inverse(optarg, &invert, &optind, 0, argv);
proto = check_proto(pnum, invflags);
multiinfo->count = parse_multi_ports(optarg,
multiinfo->ports, proto);
multiinfo->flags = XT_MULTIPORT_DESTINATION;
break;
case '3':
xtables_check_inverse(optarg, &invert, &optind, 0, argv);
proto = check_proto(pnum, invflags);
multiinfo->count = parse_multi_ports(optarg,
multiinfo->ports, proto);
multiinfo->flags = XT_MULTIPORT_EITHER;
break;
default:
return 0;
}
if (invert)
xtables_error(PARAMETER_PROBLEM,
"multiport does not support invert");
if (*flags)
xtables_error(PARAMETER_PROBLEM,
"multiport can only have one option");
*flags = 1;
return 1;
}
/* Function which parses command options; returns true if it
ate an option */
static int
parse(int c, char **argv, int invert, unsigned int *flags,
const struct ipt_entry *entry,
unsigned int *nfcache,
struct ipt_entry_match **match)
{
const char *proto;
struct ipt_mport *minfo
= (struct ipt_mport *)(*match)->data;
switch (c) {
case '1':
proto = check_proto(entry);
parse_multi_ports(argv[optind-1], minfo, proto);
minfo->flags = IPT_MPORT_SOURCE;
*nfcache |= NFC_IP_SRC_PT;
break;
case '2':
proto = check_proto(entry);
parse_multi_ports(argv[optind-1], minfo, proto);
minfo->flags = IPT_MPORT_DESTINATION;
*nfcache |= NFC_IP_DST_PT;
break;
case '3':
proto = check_proto(entry);
parse_multi_ports(argv[optind-1], minfo, proto);
minfo->flags = IPT_MPORT_EITHER;
*nfcache |= NFC_IP_SRC_PT | NFC_IP_DST_PT;
break;
default:
return 0;
}
if (*flags)
exit_error(PARAMETER_PROBLEM,
"multiport can only have one option");
*flags = 1;
return 1;
}
/* Function which parses command options; returns true if it
ate an option */
static int
parse(int c, char **argv, int invert, unsigned int *flags,
const struct ipt_entry *entry,
struct ipt_entry_target **target)
{
int portok;
struct ipt_porttrigger_info *info = (struct ipt_porttrigger_info *)(*target)->data;
switch (c) {
case '1':
if (check_inverse(optarg, &invert, &optind, 0))
exit_error(PARAMETER_PROBLEM, "Unexpected `!' ");
if (!strcasecmp(optarg, "dnat"))
info->mode= MODE_DNAT;
else if (!strcasecmp(optarg, "forward_in"))
info->mode= MODE_FORWARD_IN;
else if (!strcasecmp(optarg, "forward_out"))
info->mode= MODE_FORWARD_OUT;
return 1;
case '2':
if (check_inverse(optarg, &invert, &optind, 0))
exit_error(PARAMETER_PROBLEM, "Unexpected `!' ");
if (!strcasecmp(optarg, "tcp"))
info->trigger_proto= IPPROTO_TCP;
else if (!strcasecmp(optarg, "udp"))
info->trigger_proto = IPPROTO_UDP;
else if (!strcasecmp(optarg, "all") || !strcasecmp(optarg, "any"))
info->trigger_proto = 0;
return 1;
case '3':
if (check_inverse(optarg, &invert, &optind, 0))
exit_error(PARAMETER_PROBLEM, "Unexpected `!' ");
if (!strcasecmp(optarg, "tcp"))
info->forward_proto= IPPROTO_TCP;
else if (!strcasecmp(optarg, "udp"))
info->forward_proto = IPPROTO_UDP;
else if (!strcasecmp(optarg, "all") || !strcasecmp(optarg, "any"))
info->forward_proto = 0;
return 1;
case '4':
if (check_inverse(optarg, &invert, &optind, 0))
exit_error(PARAMETER_PROBLEM, "Unexpected `!' ");
parse_multi_ports(optarg, &info->trigger_ports);
return 1;
case '5':
if (check_inverse(optarg, &invert, &optind, 0))
exit_error(PARAMETER_PROBLEM, "Unexpected `!' ");
parse_multi_ports(optarg, &info->forward_ports);
return 1;
case '6':
if (check_inverse(optarg, &invert, &optind, 0))
exit_error(PARAMETER_PROBLEM, "Unexpected `!' ");
info->timer = atoi(optarg);
return 1;
default:
return 0;
}
}
