1 /****************************************************************************
2 ****************************************************************************
4 *** This header was automatically generated from a Linux kernel header
5 *** of the same name, to make information necessary for userspace to
6 *** call into the kernel available to libc. It contains only constants,
7 *** structures, and macros generated from the original header, and thus,
8 *** contains no copyrightable information.
10 ****************************************************************************
11 ****************************************************************************/
12 #ifndef _XT_CONNTRACK_H
13 #define _XT_CONNTRACK_H
15 #include <linux/netfilter/nf_conntrack_tuple_common.h>
18 #define XT_CONNTRACK_STATE_BIT(ctinfo) (1 << ((ctinfo)%IP_CT_IS_REPLY+1))
19 #define XT_CONNTRACK_STATE_INVALID (1 << 0)
21 #define XT_CONNTRACK_STATE_SNAT (1 << (IP_CT_NUMBER + 1))
22 #define XT_CONNTRACK_STATE_DNAT (1 << (IP_CT_NUMBER + 2))
23 #define XT_CONNTRACK_STATE_UNTRACKED (1 << (IP_CT_NUMBER + 3))
25 #define XT_CONNTRACK_STATE 0x01
26 #define XT_CONNTRACK_PROTO 0x02
27 #define XT_CONNTRACK_ORIGSRC 0x04
28 #define XT_CONNTRACK_ORIGDST 0x08
29 #define XT_CONNTRACK_REPLSRC 0x10
30 #define XT_CONNTRACK_REPLDST 0x20
31 #define XT_CONNTRACK_STATUS 0x40
32 #define XT_CONNTRACK_EXPIRES 0x80
34 struct ip_conntrack_old_tuple
53 struct xt_conntrack_info
55 unsigned int statemask, statusmask;
57 struct ip_conntrack_old_tuple tuple[IP_CT_DIR_MAX];
58 struct in_addr sipmsk[IP_CT_DIR_MAX], dipmsk[IP_CT_DIR_MAX];
60 unsigned long expires_min, expires_max;