2
* OpenVPN -- An application to securely tunnel IP networks
3
* over a single TCP/UDP port, with support for SSL/TLS-based
4
* session authentication and key exchange,
5
* packet encryption, packet authentication, and
8
* Copyright (C) 2002-2010 OpenVPN Technologies, Inc. <sales@openvpn.net>
10
* This program is free software; you can redistribute it and/or modify
11
* it under the terms of the GNU General Public License version 2
12
* as published by the Free Software Foundation.
14
* This program is distributed in the hope that it will be useful,
15
* but WITHOUT ANY WARRANTY; without even the implied warranty of
16
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17
* GNU General Public License for more details.
19
* You should have received a copy of the GNU General Public License
20
* along with this program (see the file COPYING included with this
21
* distribution); if not, write to the Free Software Foundation, Inc.,
22
* 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
25
/* packet filter functions */
27
#if defined(ENABLE_PF) && !defined(OPENVPN_PF_H)
33
#define PF_MAX_LINE_LEN 256
44
struct pf_subnet *next;
45
struct ipv4_subnet rule;
48
struct pf_subnet_set {
50
struct pf_subnet *list;
59
struct pf_cn_elem *next;
65
struct pf_cn_elem *list;
66
struct hash *hash_table;
71
struct pf_subnet_set sns;
81
unsigned int n_check_reload;
82
struct event_timeout reload;
86
void pf_init_context (struct context *c);
88
void pf_destroy_context (struct pf_context *pfc);
91
void pf_check_reload (struct context *c);
95
bool pf_load_from_buffer_list (struct context *c, const struct buffer_list *config);
99
void pf_context_print (const struct pf_context *pfc, const char *prefix, const int lev);