From owner-freebsd-security@FreeBSD.ORG Fri Jan 14 13:50:05 2005 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3E19916A4CE for ; Fri, 14 Jan 2005 13:50:05 +0000 (GMT) Received: from internet.potentialtech.com (h-66-167-251-6.phlapafg.covad.net [66.167.251.6]) by mx1.FreeBSD.org (Postfix) with ESMTP id AF71C43D1D for ; Fri, 14 Jan 2005 13:50:02 +0000 (GMT) (envelope-from wmoran@potentialtech.com) Received: from working.potentialtech.com (pa-plum-cmts1e-68-68-113-64.pittpa.adelphia.net [68.68.113.64]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by internet.potentialtech.com (Postfix) with ESMTP id 9C03D69A3F; Fri, 14 Jan 2005 08:50:01 -0500 (EST) Date: Fri, 14 Jan 2005 08:50:00 -0500 From: Bill Moran To: Vladimir Terziev Message-Id: <20050114085000.37369544.wmoran@potentialtech.com> In-Reply-To: <20050114111705.38c8f955.vlady@sun-fish.com> References: <41E6D3EE.5090205@cloudview.com> <20050113221947.GC46977@obiwan.tataz.chchile.org> <41E78BCA.2080903@e-card.bg> <20050114111705.38c8f955.vlady@sun-fish.com> Organization: Potential Technologies X-Mailer: Sylpheed version 1.0.0rc (GTK+ 1.2.10; i386-portbld-freebsd4.10) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit cc: freebsd-security@freebsd.org cc: jeremie@le-hen.org Subject: Re: Listening outside ipfw / program interface to ipfw X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Jan 2005 13:50:05 -0000 Vladimir Terziev wrote: > > I have an old FreeBSD 4.3 and the man page of ipfirewall(4) > describes the C api for manipulation of IP filtering rules. I'm not > sure the C api interface in 4.10 is still the same as in 4.3, but i > suggest you to try. Just find the man page from somewhere. http://www.freebsd.org/cgi/man.cgi?query=ipfirewall&apropos=0&sektion=4&manpath=FreeBSD+4.3-RELEASE&format=html The www site archives all versions of man pages. > > Vladimir > > On Fri, 14 Jan 2005 11:07:22 +0200 > Rumen Telbizov wrote: > > > > > Hi > > > > Jeremie Le Hen wrote: > > >>2) Is there an api to ipfw that will let me manipulate rules, query > > >>stats etc? I need something faster than running the command line binary? > > > > > > > > > Yes, you should look at the ``SEE ALSO'' section in ipfw(8) manual page. > > > ipfirewall(4) is what you are looking for, but looking at ipfw(8) > > > source code might help too. > > > > On what version of FreeBSD are you looking the > > ipfirewall(4) man page? > > > > Recently I needed the C api to ipfw, but it > > turns out that ipfirewall(4) man page no longer > > describes it. This is on 5.3-STABLE and 4.10-STABLE. > > I also searched in google and I think I had found > > a post saying that currently the only way to manipulate/use > > firewall rules is via ifpw(8) command. > > > > If someone can provide me a reference to the C api > > of ipfw I will be thankfull. > > > > Rumen Telbizov > > > > _______________________________________________ > > freebsd-security@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-security > > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org" > _______________________________________________ > freebsd-security@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org" -- Bill Moran Potential Technologies http://www.potentialtech.com