7eb9282cd0
The LOG targets print the entire MAC header as one long string, which is not readable very well: IN=eth0 OUT= MAC=00:15:f2:24:91:f8:00:1b:24:dc:61:e6:08:00 ... Add an option to decode known header formats (currently just ARPHRD_ETHER devices) in their individual fields: IN=eth0 OUT= MACSRC=00:1b:24:dc:61:e6 MACDST=00:15:f2:24:91:f8 MACPROTO=0800 ... IN=eth0 OUT= MACSRC=00:1b:24:dc:61:e6 MACDST=00:15:f2:24:91:f8 MACPROTO=86dd ... The option needs to be explicitly enabled by userspace to avoid breaking existing parsers. Signed-off-by: Patrick McHardy <kaber@trash.net>
20 lines
591 B
C
20 lines
591 B
C
#ifndef _IPT_LOG_H
|
|
#define _IPT_LOG_H
|
|
|
|
/* make sure not to change this without changing netfilter.h:NF_LOG_* (!) */
|
|
#define IPT_LOG_TCPSEQ 0x01 /* Log TCP sequence numbers */
|
|
#define IPT_LOG_TCPOPT 0x02 /* Log TCP options */
|
|
#define IPT_LOG_IPOPT 0x04 /* Log IP options */
|
|
#define IPT_LOG_UID 0x08 /* Log UID owning local socket */
|
|
#define IPT_LOG_NFLOG 0x10 /* Unsupported, don't reuse */
|
|
#define IPT_LOG_MACDECODE 0x20 /* Decode MAC header */
|
|
#define IPT_LOG_MASK 0x2f
|
|
|
|
struct ipt_log_info {
|
|
unsigned char level;
|
|
unsigned char logflags;
|
|
char prefix[30];
|
|
};
|
|
|
|
#endif /*_IPT_LOG_H*/
|