PATH:
usr
/
include
/
linux
/
netfilter
#ifndef _NF_OSF_H #define _NF_OSF_H #include <linux/types.h> #define MAXGENRELEN 32 #define NF_OSF_GENRE (1 << 0) #define NF_OSF_TTL (1 << 1) #define NF_OSF_LOG (1 << 2) #define NF_OSF_INVERT (1 << 3) #define NF_OSF_LOGLEVEL_ALL 0 /* log all matched fingerprints */ #define NF_OSF_LOGLEVEL_FIRST 1 /* log only the first matced fingerprint */ #define NF_OSF_LOGLEVEL_ALL_KNOWN 2 /* do not log unknown packets */ #define NF_OSF_TTL_TRUE 0 /* True ip and fingerprint TTL comparison */ /* Do not compare ip and fingerprint TTL at all */ #define NF_OSF_TTL_NOCHECK 2 /* Wildcard MSS (kind of). * It is used to implement a state machine for the different wildcard values * of the MSS and window sizes. */ struct nf_osf_wc { __u32 wc; __u32 val; }; /* This struct represents IANA options * http://www.iana.org/assignments/tcp-parameters */ struct nf_osf_opt { __u16 kind, length; struct nf_osf_wc wc; }; struct nf_osf_info { char genre[MAXGENRELEN]; __u32 len; __u32 flags; __u32 loglevel; __u32 ttl; }; struct nf_osf_user_finger { struct nf_osf_wc wss; __u8 ttl, df; __u16 ss, mss; __u16 opt_num; char genre[MAXGENRELEN]; char version[MAXGENRELEN]; char subtype[MAXGENRELEN]; /* MAX_IPOPTLEN is maximum if all options are NOPs or EOLs */ struct nf_osf_opt opt[MAX_IPOPTLEN]; }; struct nf_osf_nlmsg { struct nf_osf_user_finger f; struct iphdr ip; struct tcphdr tcp; }; /* Defines for IANA option kinds */ enum iana_options { OSFOPT_EOL = 0, /* End of options */ OSFOPT_NOP, /* NOP */ OSFOPT_MSS, /* Maximum segment size */ OSFOPT_WSO, /* Window scale option */ OSFOPT_SACKP, /* SACK permitted */ OSFOPT_SACK, /* SACK */ OSFOPT_ECHO, OSFOPT_ECHOREPLY, OSFOPT_TS, /* Timestamp option */ OSFOPT_POCP, /* Partial Order Connection Permitted */ OSFOPT_POSP, /* Partial Order Service Profile */ /* Others are not used in the current OSF */ OSFOPT_EMPTY = 255, }; #endif /* _NF_OSF_H */
[+]
..
[-] xt_helper.h
[edit]
[-] xt_comment.h
[edit]
[-] xt_TCPMSS.h
[edit]
[-] xt_dscp.h
[edit]
[-] nf_conntrack_tcp.h
[edit]
[-] xt_TEE.h
[edit]
[-] xt_ipvs.h
[edit]
[-] nf_conntrack_common.h
[edit]
[-] xt_cluster.h
[edit]
[+]
ipset
[-] xt_hashlimit.h
[edit]
[-] xt_multiport.h
[edit]
[-] nfnetlink_acct.h
[edit]
[-] xt_quota.h
[edit]
[-] xt_DSCP.h
[edit]
[-] xt_connbytes.h
[edit]
[-] nf_tables_compat.h
[edit]
[-] nfnetlink_log.h
[edit]
[-] xt_state.h
[edit]
[-] nf_nat.h
[edit]
[-] xt_CONNSECMARK.h
[edit]
[-] nf_conntrack_ftp.h
[edit]
[-] nf_log.h
[edit]
[-] xt_iprange.h
[edit]
[-] xt_sctp.h
[edit]
[-] xt_IDLETIMER.h
[edit]
[-] xt_recent.h
[edit]
[-] xt_realm.h
[edit]
[-] xt_connlabel.h
[edit]
[-] xt_mac.h
[edit]
[-] xt_owner.h
[edit]
[-] x_tables.h
[edit]
[-] xt_SECMARK.h
[edit]
[-] nf_tables.h
[edit]
[-] xt_HMARK.h
[edit]
[-] xt_length.h
[edit]
[-] nf_conntrack_sctp.h
[edit]
[-] xt_TCPOPTSTRIP.h
[edit]
[-] xt_LED.h
[edit]
[-] xt_ipcomp.h
[edit]
[-] xt_conntrack.h
[edit]
[-] xt_osf.h
[edit]
[-] xt_set.h
[edit]
[-] nfnetlink_compat.h
[edit]
[-] xt_l2tp.h
[edit]
[-] xt_MARK.h
[edit]
[-] xt_NFQUEUE.h
[edit]
[-] xt_string.h
[edit]
[-] xt_esp.h
[edit]
[-] xt_connlimit.h
[edit]
[-] xt_limit.h
[edit]
[-] xt_TPROXY.h
[edit]
[-] xt_dccp.h
[edit]
[-] xt_CHECKSUM.h
[edit]
[-] xt_CONNMARK.h
[edit]
[-] xt_tcpudp.h
[edit]
[-] xt_policy.h
[edit]
[-] nfnetlink_cthelper.h
[edit]
[-] xt_RATEEST.h
[edit]
[-] xt_SYNPROXY.h
[edit]
[-] nfnetlink.h
[edit]
[-] xt_cgroup.h
[edit]
[-] nfnetlink_queue.h
[edit]
[-] xt_cpu.h
[edit]
[-] xt_NFLOG.h
[edit]
[-] xt_rateest.h
[edit]
[-] xt_physdev.h
[edit]
[-] xt_CLASSIFY.h
[edit]
[-] xt_addrtype.h
[edit]
[-] xt_connmark.h
[edit]
[-] xt_statistic.h
[edit]
[-] xt_mark.h
[edit]
[-] xt_devgroup.h
[edit]
[-] nf_osf.h
[edit]
[-] nfnetlink_cttimeout.h
[edit]
[-] xt_u32.h
[edit]
[-] nfnetlink_conntrack.h
[edit]
[-] xt_pkttype.h
[edit]
[-] xt_socket.h
[edit]
[-] xt_CT.h
[edit]
[-] xt_rpfilter.h
[edit]
[-] xt_ecn.h
[edit]
[-] xt_bpf.h
[edit]
[-] xt_LOG.h
[edit]
[-] xt_tcpmss.h
[edit]
[-] nf_conntrack_tuple_common.h
[edit]
[-] xt_AUDIT.h
[edit]
[-] xt_nfacct.h
[edit]
[-] xt_time.h
[edit]