From owner-freebsd-security@FreeBSD.ORG Fri Jan 14 09:17:09 2005 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7EDA416A4CE for ; Fri, 14 Jan 2005 09:17:09 +0000 (GMT) Received: from blah.sun-fish.com (blah.sun-fish.com [62.176.125.194]) by mx1.FreeBSD.org (Postfix) with ESMTP id 86BCF43D49 for ; Fri, 14 Jan 2005 09:17:08 +0000 (GMT) (envelope-from vladimir.terziev@sun-fish.com) Received: by blah.sun-fish.com (Postfix, from userid 599) id E9E7834190; Fri, 14 Jan 2005 10:17:05 +0100 (CET) Received: from sun-fish.com (fs.cmotd.com [192.168.3.253]) by blah.sun-fish.com (Postfix) with ESMTP id DB06834176; Fri, 14 Jan 2005 10:17:05 +0100 (CET) Received: from sun-fish.com (localhost.cmotd.com [127.0.0.1]) by sun-fish.com (Postfix) with ESMTP id 6264E38406; Fri, 14 Jan 2005 10:17:05 +0100 (CET) Received: from daemon.cmotd.com (daemon.cmotd.com [192.168.3.104]) by sun-fish.com (Postfix) with SMTP id 2DE0B38404; Fri, 14 Jan 2005 10:17:05 +0100 (CET) Date: Fri, 14 Jan 2005 11:17:05 +0200 From: Vladimir Terziev To: altares@e-card.bg Message-Id: <20050114111705.38c8f955.vlady@sun-fish.com> In-Reply-To: <41E78BCA.2080903@e-card.bg> References: <41E6D3EE.5090205@cloudview.com> <20050113221947.GC46977@obiwan.tataz.chchile.org> <41E78BCA.2080903@e-card.bg> Organization: SunFish Ltd., Sofia X-Mailer: Sylpheed version 1.0.0-gtk2-20041224 (GTK+ 2.4.0; i386-unknown-freebsd4.10) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-AV-Checked: ClamAV X-Mailman-Approved-At: Fri, 14 Jan 2005 13:40:25 +0000 cc: freebsd-security@freebsd.org cc: jpp@cloudview.com cc: jeremie@le-hen.org Subject: Re: Listening outside ipfw / program interface to ipfw X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Jan 2005 09:17:09 -0000 I have an old FreeBSD 4.3 and the man page of ipfirewall(4) describes the C api for manipulation of IP filtering rules. I'm not sure the C api interface in 4.10 is still the same as in 4.3, but i suggest you to try. Just find the man page from somewhere. Vladimir On Fri, 14 Jan 2005 11:07:22 +0200 Rumen Telbizov wrote: > > Hi > > Jeremie Le Hen wrote: > >>2) Is there an api to ipfw that will let me manipulate rules, query > >>stats etc? I need something faster than running the command line binary? > > > > > > Yes, you should look at the ``SEE ALSO'' section in ipfw(8) manual page. > > ipfirewall(4) is what you are looking for, but looking at ipfw(8) > > source code might help too. > > On what version of FreeBSD are you looking the > ipfirewall(4) man page? > > Recently I needed the C api to ipfw, but it > turns out that ipfirewall(4) man page no longer > describes it. This is on 5.3-STABLE and 4.10-STABLE. > I also searched in google and I think I had found > a post saying that currently the only way to manipulate/use > firewall rules is via ifpw(8) command. > > If someone can provide me a reference to the C api > of ipfw I will be thankfull. > > Rumen Telbizov > > _______________________________________________ > freebsd-security@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"