2 * m_egress.c ingress/egress packet mirror/redir actions module
4 * This program is free software; you can distribute it and/or
5 * modify it under the terms of the GNU General Public License
6 * as published by the Free Software Foundation; either version
7 * 2 of the License, or (at your option) any later version.
9 * Authors: J Hadi Salim (hadi@cyberus.ca)
11 * TODO: Add Ingress support
19 #include <sys/socket.h>
20 #include <netinet/in.h>
21 #include <arpa/inet.h>
25 #include "tc_common.h"
26 #include <linux/tc_act/tc_mirred.h>
31 fprintf(stderr
, "Usage: mirred <DIRECTION> <ACTION> [index INDEX] <dev DEVICENAME>\n");
32 fprintf(stderr
, "where:\n");
33 fprintf(stderr
, "\tDIRECTION := <ingress | egress>\n");
34 fprintf(stderr
, "\tACTION := <mirror | redirect>\n");
35 fprintf(stderr
, "\tINDEX is the specific policy instance id\n");
36 fprintf(stderr
, "\tDEVICENAME is the devicename\n");
47 static const char *mirred_n2a(int action
)
50 case TCA_EGRESS_REDIR
:
51 return "Egress Redirect";
52 case TCA_INGRESS_REDIR
:
53 return "Ingress Redirect";
54 case TCA_EGRESS_MIRROR
:
55 return "Egress Mirror";
56 case TCA_INGRESS_MIRROR
:
57 return "Ingress Mirror";
63 static const char *mirred_direction(int action
)
66 case TCA_EGRESS_REDIR
:
67 case TCA_EGRESS_MIRROR
:
69 case TCA_INGRESS_REDIR
:
70 case TCA_INGRESS_MIRROR
:
77 static const char *mirred_action(int action
)
80 case TCA_EGRESS_REDIR
:
81 case TCA_INGRESS_REDIR
:
83 case TCA_EGRESS_MIRROR
:
84 case TCA_INGRESS_MIRROR
:
92 parse_direction(struct action_util
*a
, int *argc_p
, char ***argv_p
,
93 int tca_id
, struct nlmsghdr
*n
)
97 char **argv
= *argv_p
;
98 int ok
= 0, iok
= 0, mirror
= 0, redir
= 0, ingress
= 0, egress
= 0;
99 struct tc_mirred p
= {};
101 char d
[IFNAMSIZ
] = {};
105 if (matches(*argv
, "action") == 0) {
107 } else if (!egress
&& matches(*argv
, "egress") == 0) {
110 fprintf(stderr
, "Can't have both egress and ingress\n");
116 } else if (!ingress
&& matches(*argv
, "ingress") == 0) {
119 fprintf(stderr
, "Can't have both ingress and egress\n");
127 if (matches(*argv
, "index") == 0) {
129 if (get_u32(&p
.index
, *argv
, 10)) {
130 fprintf(stderr
, "Illegal \"index\"\n");
140 fprintf(stderr
, "was expecting egress or ingress (%s)\n", *argv
);
143 } else if (!mirror
&& matches(*argv
, "mirror") == 0) {
146 fprintf(stderr
, "Can't have both mirror and redir\n");
149 p
.eaction
= egress
? TCA_EGRESS_MIRROR
:
151 p
.action
= TC_ACT_PIPE
;
153 } else if (!redir
&& matches(*argv
, "redirect") == 0) {
156 fprintf(stderr
, "Can't have both mirror and redir\n");
159 p
.eaction
= egress
? TCA_EGRESS_REDIR
:
161 p
.action
= TC_ACT_STOLEN
;
163 } else if ((redir
|| mirror
) && matches(*argv
, "dev") == 0) {
166 duparg("dev", *argv
);
168 strncpy(d
, *argv
, sizeof(d
)-1);
191 if ((idx
= ll_name_to_index(d
)) == 0) {
192 fprintf(stderr
, "Cannot find device \"%s\"\n", d
);
200 if (p
.eaction
== TCA_EGRESS_MIRROR
|| p
.eaction
== TCA_INGRESS_MIRROR
)
201 parse_action_control(&argc
, &argv
, &p
.action
, false);
204 if (iok
&& matches(*argv
, "index") == 0) {
205 fprintf(stderr
, "mirred: Illegal double index\n");
208 if (matches(*argv
, "index") == 0) {
210 if (get_u32(&p
.index
, *argv
, 10)) {
211 fprintf(stderr
, "mirred: Illegal \"index\"\n");
220 tail
= NLMSG_TAIL(n
);
221 addattr_l(n
, MAX_MSG
, tca_id
, NULL
, 0);
222 addattr_l(n
, MAX_MSG
, TCA_MIRRED_PARMS
, &p
, sizeof(p
));
223 tail
->rta_len
= (void *) NLMSG_TAIL(n
) - (void *) tail
;
232 parse_mirred(struct action_util
*a
, int *argc_p
, char ***argv_p
,
233 int tca_id
, struct nlmsghdr
*n
)
237 char **argv
= *argv_p
;
240 fprintf(stderr
, "mirred bad argument count %d\n", argc
);
244 if (matches(*argv
, "mirred") == 0) {
247 fprintf(stderr
, "mirred bad argument %s\n", *argv
);
252 if (matches(*argv
, "egress") == 0 || matches(*argv
, "ingress") == 0 ||
253 matches(*argv
, "index") == 0) {
254 int ret
= parse_direction(a
, &argc
, &argv
, tca_id
, n
);
262 } else if (matches(*argv
, "help") == 0) {
265 fprintf(stderr
, "mirred option not supported %s\n", *argv
);
273 print_mirred(struct action_util
*au
, FILE * f
, struct rtattr
*arg
)
276 struct rtattr
*tb
[TCA_MIRRED_MAX
+ 1];
282 parse_rtattr_nested(tb
, TCA_MIRRED_MAX
, arg
);
284 if (tb
[TCA_MIRRED_PARMS
] == NULL
) {
285 print_string(PRINT_FP
, NULL
, "%s", "[NULL mirred parameters]");
288 p
= RTA_DATA(tb
[TCA_MIRRED_PARMS
]);
295 if ((dev
= ll_index_to_name(p
->ifindex
)) == 0) {
296 fprintf(stderr
, "Cannot find device %d\n", p
->ifindex
);
300 print_string(PRINT_ANY
, "kind", "%s ", "mirred");
301 print_string(PRINT_FP
, NULL
, "(%s", mirred_n2a(p
->eaction
));
302 print_string(PRINT_JSON
, "mirred_action", NULL
,
303 mirred_action(p
->eaction
));
304 print_string(PRINT_JSON
, "direction", NULL
,
305 mirred_direction(p
->eaction
));
306 print_string(PRINT_ANY
, "to_dev", " to device %s)", dev
);
307 print_action_control(f
, " ", p
->action
, "");
309 print_uint(PRINT_ANY
, "index", "\n \tindex %u", p
->index
);
310 print_int(PRINT_ANY
, "ref", " ref %d", p
->refcnt
);
311 print_int(PRINT_ANY
, "bind", " bind %d", p
->bindcnt
);
314 if (tb
[TCA_MIRRED_TM
]) {
315 struct tcf_t
*tm
= RTA_DATA(tb
[TCA_MIRRED_TM
]);
320 print_string(PRINT_FP
, NULL
, "%s", "\n ");
324 struct action_util mirred_action_util
= {
326 .parse_aopt
= parse_mirred
,
327 .print_aopt
= print_mirred
,