Home
last modified time | relevance | path

Searched refs:ruleset (Results 1 – 25 of 53) sorted by relevance

123

/freebsd-12-stable/sbin/pfctl/
Dpf_ruleset.c81 #define pf_main_ruleset pf_main_anchor.ruleset
131 pf_init_ruleset(struct pfctl_ruleset *ruleset) in pf_init_ruleset() argument
135 memset(ruleset, 0, sizeof(struct pfctl_ruleset)); in pf_init_ruleset()
137 TAILQ_INIT(&ruleset->rules[i].queues[0]); in pf_init_ruleset()
138 TAILQ_INIT(&ruleset->rules[i].queues[1]); in pf_init_ruleset()
139 ruleset->rules[i].active.ptr = &ruleset->rules[i].queues[0]; in pf_init_ruleset()
140 ruleset->rules[i].inactive.ptr = &ruleset->rules[i].queues[1]; in pf_init_ruleset()
171 return (&anchor->ruleset); in pf_find_ruleset()
178 struct pfctl_ruleset *ruleset; in pf_find_or_create_ruleset() local
185 ruleset = pf_find_ruleset(path); in pf_find_or_create_ruleset()
[all …]
Dparse.y536 ruleset : /* empty */
537 | ruleset include '\n'
538 | ruleset '\n'
539 | ruleset option '\n'
540 | ruleset scrubrule '\n'
541 | ruleset natrule '\n'
542 | ruleset binatrule '\n'
543 | ruleset pfrule '\n'
544 | ruleset anchorrule '\n'
545 | ruleset loadrule '\n'
[all …]
Dpfctl.c1490 rs = &pf->anchor->ruleset; in pfctl_append_rule()
1499 pf_init_ruleset(&r->anchor->ruleset); in pfctl_append_rule()
1500 r->anchor->ruleset.anchor = r->anchor; in pfctl_append_rule()
1602 &r->anchor->ruleset, rs_num, depth + 1))) in pfctl_load_ruleset()
1708 pf_init_ruleset(&pf_main_anchor.ruleset); in pfctl_rules()
1709 pf_main_anchor.ruleset.anchor = &pf_main_anchor; in pfctl_rules()
1737 rs = &pf.anchor->ruleset; in pfctl_rules()
1768 pf.astack[0]->ruleset.tticket = in pfctl_rules()
/freebsd-12-stable/sys/netpfil/pf/
Dpf_ruleset.c135 pf_init_kruleset(struct pf_kruleset *ruleset) in pf_init_kruleset() argument
139 memset(ruleset, 0, sizeof(struct pf_kruleset)); in pf_init_kruleset()
141 TAILQ_INIT(&ruleset->rules[i].queues[0]); in pf_init_kruleset()
142 TAILQ_INIT(&ruleset->rules[i].queues[1]); in pf_init_kruleset()
143 ruleset->rules[i].active.ptr = &ruleset->rules[i].queues[0]; in pf_init_kruleset()
144 ruleset->rules[i].inactive.ptr = &ruleset->rules[i].queues[1]; in pf_init_kruleset()
161 return (&anchor->ruleset); in pf_find_kruleset()
168 struct pf_kruleset *ruleset; in pf_find_or_create_kruleset() local
175 ruleset = pf_find_kruleset(path); in pf_find_or_create_kruleset()
176 if (ruleset != NULL) in pf_find_or_create_kruleset()
[all …]
Dif_pflog.c206 struct pf_kruleset *ruleset, struct pf_pdesc *pd, int lookupsafe) in pflog_packet() argument
230 if (ruleset != NULL && ruleset->anchor != NULL) in pflog_packet()
231 strlcpy(hdr.ruleset, ruleset->anchor->name, in pflog_packet()
232 sizeof(hdr.ruleset)); in pflog_packet()
Dpf_ioctl.c382 struct pf_kruleset *ruleset; in pf_get_kpool() local
386 ruleset = pf_find_kruleset(anchor); in pf_get_kpool()
387 if (ruleset == NULL) in pf_get_kpool()
394 ruleset->rules[rs_num].active.ticket) in pf_get_kpool()
397 rule = TAILQ_LAST(ruleset->rules[rs_num].active.ptr, in pf_get_kpool()
400 rule = TAILQ_FIRST(ruleset->rules[rs_num].active.ptr); in pf_get_kpool()
403 ruleset->rules[rs_num].inactive.ticket) in pf_get_kpool()
406 rule = TAILQ_LAST(ruleset->rules[rs_num].inactive.ptr, in pf_get_kpool()
409 rule = TAILQ_FIRST(ruleset->rules[rs_num].inactive.ptr); in pf_get_kpool()
1213 pf_addr_setup(struct pf_kruleset *ruleset, struct pf_addr_wrap *addr, in pf_addr_setup() argument
[all …]
Dpf_if.c497 struct pf_kruleset *ruleset = NULL; in pfi_dynaddr_setup() local
536 if ((ruleset = pf_find_or_create_kruleset(PF_RESERVED_ANCHOR)) == NULL) { in pfi_dynaddr_setup()
541 if ((dyn->pfid_kt = pfr_attach_table(ruleset, tblname)) == NULL) { in pfi_dynaddr_setup()
559 if (ruleset != NULL) in pfi_dynaddr_setup()
560 pf_remove_if_empty_kruleset(ruleset); in pfi_dynaddr_setup()
Dpf.c3326 *rs = &f->child->ruleset; in pf_step_into_anchor()
3329 *rs = &(*r)->anchor->ruleset; in pf_step_into_anchor()
3369 *rs = &f->child->ruleset; in pf_step_out_of_anchor()
3690 struct pf_kruleset *ruleset = NULL; in pf_test_rule() local
3971 a, ruleset, pd, 1); in pf_test_rule()
3976 *rsm = ruleset; in pf_test_rule()
3983 &ruleset, PF_RULESET_FILTER, &r, &a, in pf_test_rule()
3987 &ruleset, PF_RULESET_FILTER, &r, &a, &match)) in pf_test_rule()
3992 ruleset = *rsm; in pf_test_rule()
4003 ruleset, pd, 1); in pf_test_rule()
[all …]
/freebsd-12-stable/contrib/byacc/
Dclosure.c7 unsigned *ruleset; variable
127 rsend = ruleset + rulesetsize; in closure()
128 for (rsp = ruleset; rsp < rsend; rsp++) in closure()
138 rsp = ruleset; in closure()
147 for (rsp = ruleset; rsp < rsend; ++rsp) in closure()
180 FREE(ruleset); in finalize_closure()
/freebsd-12-stable/contrib/sendmail/src/
Dreadcf.c144 int ruleset = -1; local
232 if (ruleset < 0)
249 RewriteRules[ruleset] = rwp =
512 ruleset = strtorwset(exbuf, NULL, ST_ENTER);
513 if (ruleset < 0)
516 rwp = RewriteRules[ruleset];
2025 register int ruleset; in printrules() local
2027 for (ruleset = 0; ruleset < 10; ruleset++) in printrules()
2029 if (RewriteRules[ruleset] == NULL) in printrules()
2031 sm_dprintf("\n----Rule Set %d:", ruleset); in printrules()
[all …]
/freebsd-12-stable/lib/libpfctl/
Dlibpfctl.h206 struct pfctl_ruleset ruleset; member
297 uint32_t ruleset, const char *path);
299 const char *anchor, uint32_t ruleset, struct pfctl_rule *rule,
302 const char *anchor, uint32_t ruleset, struct pfctl_rule *rule,
Dlibpfctl.c700 pfctl_get_rules_info(int dev, struct pfctl_rules_info *rules, uint32_t ruleset, in pfctl_get_rules_info() argument
710 pr.rule.action = ruleset; in pfctl_get_rules_info()
723 uint32_t ruleset, struct pfctl_rule *rule, char *anchor_call) in pfctl_get_rule() argument
725 return (pfctl_get_clear_rule(dev, nr, ticket, anchor, ruleset, rule, in pfctl_get_rule()
730 const char *anchor, uint32_t ruleset, struct pfctl_rule *rule, in pfctl_get_clear_rule() argument
743 nvlist_add_number(nvl, "ruleset", ruleset); in pfctl_get_clear_rule()
/freebsd-12-stable/sbin/devfs/
Ddevfs.rules7 # denotes the beginning of a ruleset. In the brackets should
8 # be a name for the rule and its ruleset number. Any other lines
19 # Very basic and secure ruleset: Hide everything.
/freebsd-12-stable/libexec/rc/
Drc.subr1716 debug "found ruleset: $rulename=$rulenum"
1770 # devfs_set_ruleset ruleset [dir]
1771 # Sets the default ruleset of dir to ruleset. The ruleset argument
1772 # must be a ruleset name as specified in devfs.rules(5) file.
1783 warn "$_me: you must specify a ruleset number"
1786 debug "$_me: setting ruleset ($rs) on mount-point (${devdir#-m })"
1787 if ! /sbin/devfs $devdir ruleset $rs; then
1788 warn "$_me: unable to set ruleset $rs to ${devdir#-m }"
1794 # devfs_apply_ruleset ruleset [dir]
1795 # Apply ruleset number $ruleset to the devfs mountpoint $dir.
[all …]
/freebsd-12-stable/contrib/blacklist/etc/
Dnpf.conf9 ruleset "blacklistd"
/freebsd-12-stable/contrib/blacklist/
DREADME90 ruleset "blacklistd-ext"
91 ruleset "blacklistd"
97 ruleset "blacklistd-int"
/freebsd-12-stable/usr.sbin/jail/
Dcommand.c282 const char *jidstr, *conslog, *path, *ruleset, *term, *username; in run_command() local
518 ruleset = string_param(j->intparams[KP_DEVFS_RULESET]); in run_command()
519 if (!ruleset) in run_command()
520 ruleset = "4"; /* devfsrules_jail */ in run_command()
521 argv[3] = acs = alloca(11 + strlen(ruleset)); in run_command()
522 sprintf(acs, "-oruleset=%s", ruleset); in run_command()
/freebsd-12-stable/sys/net/
Dif_pflog.h48 char ruleset[PFLOG_RULESET_NAME_SIZE]; member
/freebsd-12-stable/share/examples/ipfilter/rules/
Dexample.52 # test ruleset
/freebsd-12-stable/share/examples/ipfilter/
Dipf-howto.txt184 interrupt the flow, IPF will go through the entire ruleset,
221 It's a good time to point out that even if the ruleset had
246 Here's a modified copy of the original ruleset using the
284 so a change to the ruleset to make this possible is called
301 Now we have a less stringent ruleset that actually does
489 what you already know of IPF. The new ruleset would be:
624 This brings our total ruleset to look something like this:
643 ruleset. When you're actually creating your ruleset, you
711 when setting up your own ruleset, adding rules for every
755 Remember that ruleset order is important. Since we're doing
[all …]
/freebsd-12-stable/contrib/sendmail/cf/hack/
Dxconnect.m421 # x_connect ruleset for looking up XConnect: tag in access DB to enable
/freebsd-12-stable/contrib/tcpdump/
Dprint-pflog.c100 ND_PRINT((ndo, "rule %u.%s.%u/", rulenr, hdr->ruleset, subrulenr)); in pflog_print()
/freebsd-12-stable/contrib/ipfilter/
DREADME86 - test the ruleset given by filename. Reads in the ruleset and then
/freebsd-12-stable/contrib/sendmail/cf/
DREADME164 ruleset tls_server is only invoked if sendmail has been compiled
637 an extra rule is added to ruleset 0 that forwards all
823 don't go through ruleset 5, and are not forwarded to
875 is done in ruleset 3.
1264 ruleset; they will be skipped under certain circumstances.
1269 check_other Enable a default check_other ruleset which terminates
1348 ratecontrol Enable simple ruleset to do connection rate control
1417 check_rcpt ruleset will strip @othersite and recheck
1448 compat_check Enable ruleset check_compat to look up pairs of addresses
1506 greet_pause Adds the greet_pause ruleset which enables open proxy
[all …]
/freebsd-12-stable/contrib/sendmail/cf/feature/
Dbcc.m436 # The ruleset must return either

123