[linux.git] / net / ipv6 / netfilter / ip6t_MASQUERADE.c

/*
 * Copyright (c) 2011 Patrick McHardy <[email protected]>
 *
 * This program is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License version 2 as
 * published by the Free Software Foundation.
 *
 * Based on Rusty Russell's IPv6 MASQUERADE target. Development of IPv6
 * NAT funded by Astaro.
 */

#include <linux/kernel.h>
#include <linux/module.h>
#include <linux/netdevice.h>
#include <linux/ipv6.h>
#include <linux/netfilter.h>
#include <linux/netfilter_ipv6.h>
#include <linux/netfilter/x_tables.h>
#include <net/netfilter/nf_nat.h>
#include <net/addrconf.h>
#include <net/ipv6.h>
#include <net/netfilter/ipv6/nf_nat_masquerade.h>

static unsigned int
masquerade_tg6(struct sk_buff *skb, const struct xt_action_param *par)
{
	return nf_nat_masquerade_ipv6(skb, par->targinfo, xt_out(par));
}

static int masquerade_tg6_checkentry(const struct xt_tgchk_param *par)
{
	const struct nf_nat_range2 *range = par->targinfo;

	if (range->flags & NF_NAT_RANGE_MAP_IPS)
		return -EINVAL;
	return nf_ct_netns_get(par->net, par->family);
}

static void masquerade_tg6_destroy(const struct xt_tgdtor_param *par)
{
	nf_ct_netns_put(par->net, par->family);
}

static struct xt_target masquerade_tg6_reg __read_mostly = {
	.name		= "MASQUERADE",
	.family		= NFPROTO_IPV6,
	.checkentry	= masquerade_tg6_checkentry,
	.destroy	= masquerade_tg6_destroy,
	.target		= masquerade_tg6,
	.targetsize	= sizeof(struct nf_nat_range),
	.table		= "nat",
	.hooks		= 1 << NF_INET_POST_ROUTING,
	.me		= THIS_MODULE,
};

static int __init masquerade_tg6_init(void)
{
	int err;

	err = xt_register_target(&masquerade_tg6_reg);
	if (err == 0)
		nf_nat_masquerade_ipv6_register_notifier();

	return err;
}
static void __exit masquerade_tg6_exit(void)
{
	nf_nat_masquerade_ipv6_unregister_notifier();
	xt_unregister_target(&masquerade_tg6_reg);
}

module_init(masquerade_tg6_init);
module_exit(masquerade_tg6_exit);

MODULE_LICENSE("GPL");
MODULE_AUTHOR("Patrick McHardy <[email protected]>");
MODULE_DESCRIPTION("Xtables: automatic address SNAT");
Commit	Line	Data
b3f644fc PM	1	/*
	2	* Copyright (c) 2011 Patrick McHardy <[email protected]>
	3	*
	4	* This program is free software; you can redistribute it and/or modify
	5	* it under the terms of the GNU General Public License version 2 as
	6	* published by the Free Software Foundation.
	7	*
	8	* Based on Rusty Russell's IPv6 MASQUERADE target. Development of IPv6
	9	* NAT funded by Astaro.
	10	*/
	11
	12	#include <linux/kernel.h>
	13	#include <linux/module.h>
	14	#include <linux/netdevice.h>
	15	#include <linux/ipv6.h>
	16	#include <linux/netfilter.h>
	17	#include <linux/netfilter_ipv6.h>
	18	#include <linux/netfilter/x_tables.h>
	19	#include <net/netfilter/nf_nat.h>
	20	#include <net/addrconf.h>
	21	#include <net/ipv6.h>
be6b635c	22	#include <net/netfilter/ipv6/nf_nat_masquerade.h>
b3f644fc PM	23
	24	static unsigned int
	25	masquerade_tg6(struct sk_buff skb, const struct xt_action_param par)
	26	{
613dbd95	27	return nf_nat_masquerade_ipv6(skb, par->targinfo, xt_out(par));
b3f644fc PM	28	}
	29
	30	static int masquerade_tg6_checkentry(const struct xt_tgchk_param *par)
	31	{
2eb0f624	32	const struct nf_nat_range2 *range = par->targinfo;
b3f644fc PM	33
	34	if (range->flags & NF_NAT_RANGE_MAP_IPS)
	35	return -EINVAL;
23715275 KK	36	return nf_ct_netns_get(par->net, par->family);
	37	}
	38
	39	static void masquerade_tg6_destroy(const struct xt_tgdtor_param *par)
	40	{
	41	nf_ct_netns_put(par->net, par->family);
b3f644fc PM	42	}
b3f644fc PM	43
b3f644fc PM	44	static struct xt_target masquerade_tg6_reg __read_mostly = {
	45	.name = "MASQUERADE",
	46	.family = NFPROTO_IPV6,
	47	.checkentry = masquerade_tg6_checkentry,
23715275	48	.destroy = masquerade_tg6_destroy,
b3f644fc PM	49	.target = masquerade_tg6,
	50	.targetsize = sizeof(struct nf_nat_range),
	51	.table = "nat",
	52	.hooks = 1 << NF_INET_POST_ROUTING,
	53	.me = THIS_MODULE,
	54	};
	55
	56	static int __init masquerade_tg6_init(void)
	57	{
	58	int err;
	59
	60	err = xt_register_target(&masquerade_tg6_reg);
be6b635c AB	61	if (err == 0)
be6b635c AB	62	nf_nat_masquerade_ipv6_register_notifier();
b3f644fc PM	63
	64	return err;
	65	}
	66	static void __exit masquerade_tg6_exit(void)
	67	{
be6b635c	68	nf_nat_masquerade_ipv6_unregister_notifier();
b3f644fc PM	69	xt_unregister_target(&masquerade_tg6_reg);
	70	}
	71
	72	module_init(masquerade_tg6_init);
	73	module_exit(masquerade_tg6_exit);
	74
	75	MODULE_LICENSE("GPL");
	76	MODULE_AUTHOR("Patrick McHardy <[email protected]>");
	77	MODULE_DESCRIPTION("Xtables: automatic address SNAT");