git: ipfw3: new feature 'ipfwsync'
Bill Yuan
bycn82 at crater.dragonflybsd.org
Fri Feb 26 06:54:39 PST 2016
commit e2124e7dbcbdb7c52dc235682e17c7c61befd3ee
Author: Bill Yuan <bycn82 at dragonflybsd.org>
Date: Fri Feb 26 22:48:37 2016 +0000
ipfw3: new feature 'ipfwsync'
ipfwsync is a new feature to synchronize firewall states between machines
which is running ipfw3 firewall for high availability. ipfw3 can be configured
in centre or edge mode. the centre will automatically sync the states from
centre to the edge.
e.g.
ipfw3 sync edge 5000
ipfw3 sync start edge
ipfw3 sync centre 192.168.1.1:5000,192.168.1.2:5000
ipfw3 sync start centre
ipfw3 sync show config
ipfw3 sync show status
ipfw3 sync test centre 123
Summary of changes:
sbin/ipfw3/Makefile | 1 +
sbin/ipfw3/ipfw3.c | 49 +-
sbin/ipfw3/ipfw3sync.c | 299 ++++++++++++
.../ipfw3_layer2.h => sbin/ipfw3/ipfw3sync.h | 21 +-
sys/conf/files | 1 +
sys/net/ipfw3/Makefile | 1 +
sys/net/ipfw3/ip_fw.h | 2 +-
sys/net/ipfw3/ip_fw3.c | 24 +-
sys/net/ipfw3/ip_fw3.h | 18 +-
sys/net/ipfw3/ip_fw3_sync.c | 499 +++++++++++++++++++++
sys/net/ipfw3/ip_fw3_sync.h | 130 ++++++
sys/net/ipfw3_basic/ip_fw3_basic.c | 44 +-
sys/net/ipfw3_basic/ip_fw3_basic.h | 3 +-
13 files changed, 1079 insertions(+), 13 deletions(-)
create mode 100644 sbin/ipfw3/ipfw3sync.c
copy lib/libipfw3/layer2/ipfw3_layer2.h => sbin/ipfw3/ipfw3sync.h (71%)
create mode 100644 sys/net/ipfw3/ip_fw3_sync.c
create mode 100644 sys/net/ipfw3/ip_fw3_sync.h
http://gitweb.dragonflybsd.org/dragonfly.git/commitdiff/e2124e7dbcbdb7c52dc235682e17c7c61befd3ee
--
DragonFly BSD source repository
More information about the Commits
mailing list