00001 #include <stdio.h>
00002 #include <stdlib.h>
00003 #include <string.h>
00004 #include <errno.h>
00005 #include <arpa/inet.h>
00006
00007 #include <libnetfilter_conntrack/libnetfilter_conntrack.h>
00008 #include <libnetfilter_conntrack/libnetfilter_conntrack_tcp.h>
00009
00010 static int cb(enum nf_conntrack_msg_type type,
00011 struct nf_conntrack *ct,
00012 void *data)
00013 {
00014 char buf[1024];
00015
00016 nfct_snprintf(buf, sizeof(buf), ct, NFCT_T_UNKNOWN, NFCT_O_DEFAULT, NFCT_OF_SHOW_LAYER3);
00017 printf("%s\n", buf);
00018
00019 return NFCT_CB_CONTINUE;
00020 }
00021
00022 int main(void)
00023 {
00024 int ret;
00025 struct nfct_handle *h;
00026 struct nf_conntrack *ct;
00027
00028 ct = nfct_new();
00029 if (!ct) {
00030 perror("nfct_new");
00031 return 0;
00032 }
00033
00034 nfct_set_attr_u8(ct, ATTR_L3PROTO, AF_INET);
00035 nfct_set_attr_u32(ct, ATTR_IPV4_SRC, inet_addr("1.1.1.1"));
00036 nfct_set_attr_u32(ct, ATTR_IPV4_DST, inet_addr("2.2.2.2"));
00037
00038 nfct_set_attr_u8(ct, ATTR_L4PROTO, IPPROTO_TCP);
00039 nfct_set_attr_u16(ct, ATTR_PORT_SRC, htons(20));
00040 nfct_set_attr_u16(ct, ATTR_PORT_DST, htons(10));
00041
00042 h = nfct_open(CONNTRACK, 0);
00043 if (!h) {
00044 perror("nfct_open");
00045 return -1;
00046 }
00047
00048 nfct_callback_register(h, NFCT_T_ALL, cb, NULL);
00049
00050 ret = nfct_query(h, NFCT_Q_GET, ct);
00051
00052 printf("TEST: get conntrack ");
00053 if (ret == -1)
00054 printf("(%d)(%s)\n", ret, strerror(errno));
00055 else
00056 printf("(OK)\n");
00057
00058 nfct_close(h);
00059
00060 ret == -1 ? exit(EXIT_FAILURE) : exit(EXIT_SUCCESS);
00061 }
