git: ipfw3nat: kernel NAT without libalias
Bill Yuan
bycn82 at crater.dragonflybsd.org
Fri Apr 13 05:56:39 PDT 2018
commit 936e3df8407a4355546904e5115a254b482c5f3a
Author: Bill Yuan <bycn82 at dragonflybsd.org>
Date: Fri Apr 13 04:25:53 2018 +0000
ipfw3nat: kernel NAT without libalias
More than just one address can be configured in each NAT
configuraton and each coming packet will be translated to
one of these addresses randomly.
e.g.
ipfw3 nat 1 config ip 192.168.1.1 192.168.1.2
A schedule will automatically purge the expired translations.
and its interval can be configure via below sysctl variables.
net.inet.ip.fw3_nat.udp_timeout
net.inet.ip.fw3_nat.tcp_timeout
net.inet.ip.fw3_nat.icmp_timeout
Summary of changes:
sbin/ipfw3/ipfw3.8 | 47 +++-
sbin/ipfw3/ipfw3nat.c | 180 +++++--------
sbin/ipfw3/ipfw3nat.h | 20 +-
sys/net/ipfw3_nat/ip_fw3_nat.c | 560 ++++++++++++++++++++++-------------------
sys/net/ipfw3_nat/ip_fw3_nat.h | 81 +++---
5 files changed, 468 insertions(+), 420 deletions(-)
http://gitweb.dragonflybsd.org/dragonfly.git/commitdiff/936e3df8407a4355546904e5115a254b482c5f3a
--
DragonFly BSD source repository
More information about the Commits
mailing list