CVSROOT: /cvs
Module name: src
Changes by: mich...@cvs.openbsd.org 2009/09/08 11:00:43
Modified files:
lib/libc/gen : sysctl.3
sbin/pfctl : parse.y pfctl_parser.c
sbin/sysctl : sysctl.8 sysctl.c
share/man/man4 : Makefile
share/man/man5 : pf.conf.5
sys/conf : files
sys/net : pf.c pfvar.h
sys/netinet : in.h in_proto.c
sys/sys : mbuf.h
Added files:
share/man/man4 : divert.4
sys/netinet : ip_divert.c ip_divert.h
Log message:
Add support for divert sockets. They allow you to:
- queue packets from pf(4) to a userspace application
- reinject packets from the application into the kernel stack.
The divert socket can be bound to a special "divert port" and will
receive every packet diverted to that port by pf(4).
The pf syntax is pretty simple, e.g.:
pass on em0 inet proto tcp from any to any port 80 divert-packet port 8000
test, bugfix and ok by reyk@
manpage help and ok by jmc@
no objections from many others.
