[3498] in linux-net channel archive
PATCH for ipfwadm 2.2
daemon@ATHENA.MIT.EDU (Jos Vos)
Tue Jun 25 19:40:04 1996
To: linux-net@vger.rutgers.edu
Date: Tue, 25 Jun 1996 19:17:34 +0200
From: Jos Vos <jos@xos.nl>
Hi,
Below you'll find a patch for ipfwadm 2.2 which makes manual packet
checking (the -c command) work again. Because the total packet length
is currently inspected in the Linux firewall code, this field should be
filled in correctly.
This patch only affects the -c (check packet) command of ipfwadm and is
not needed for normal firewall and accounting purposes.
I'll include this patch in the next version of ipfwadm, of course.
===================CUT HERE==================
--- ipfwadm.c.ORIGINAL Tue Jun 25 14:22:53 1996
+++ ipfwadm.c Tue Jun 25 19:12:05 1996
@@ -1670,6 +1670,7 @@
iph->version = IP_VERSION;
iph->ihl = sizeof(struct iphdr) / 4;
+ iph->tot_len = sizeof(struct ip_fwpkt);
iph->frag_off &= htons(~IP_OFFSET);
iph->saddr = fw->fw_src.s_addr;
===================CUT HERE==================
--
-- Jos Vos <jos@xos.nl>
-- X/OS Experts in Open Systems BV | Phone: +31 20 6938364
-- Amsterdam, The Netherlands | Fax: +31 20 6948204
