ipq_set_verdict(3)

1IPQ_SET_VERDICT(3)         Linux Programmer's Manual        IPQ_SET_VERDICT(3)
2
3
4

NAME

6       ipq_set_verdict  - issue verdict and optionally modified packet to ker‐
7       nel
8

SYNOPSIS

10       #include <linux/netfilter.h>
11       #include <libipq.h>
12
13       int ipq_set_verdict(const struct ipq_handle *h, ipq_id_t  id,  unsigned
14       int verdict, size_t data_len, unsigned char *buf);
15

DESCRIPTION

17       The  ipq_set_verdict  function  issues a verdict on a packet previously
18       obtained with ipq_read,  specifing  the  intended  disposition  of  the
19       packet,  and  optionally  supplying  a  modified version of the payload
20       data.
21
22       The h parameter is a context handle which  must  previously  have  been
23       returned successfully from a call to ipq_create_handle.
24
25       The id parameter is the packet identifier obtained via ipq_get_packet.
26
27       The verdict parameter must be one of:
28
29       NF_ACCEPT
30              Accept the packet and continue traversal within the kernel.
31
32       NF_DROP
33              Drop the packet.
34
35       The data_len parameter is the length of the data pointed to by buf, the
36       optional replacement payload data.
37
38       If simply setting a verdict without modifying  the  payload  data,  use
39       zero for data_len and NULL for buf.
40
41       The  application  is responsible for recalculating any packet checksums
42       when modifying packets.
43

RETURN VALUE

45       On failure, -1 is returned.
46       On success, a non-zero positive value is returned.
47

ERRORS

49       On error, a  descriptive  error  message  will  be  available  via  the
50       ipq_errstr function.
51

BUGS

53       None known.
54

AUTHOR

56       James Morris <jmorris@intercode.com.au>
57

COPYRIGHT

59       Copyright (c) 2000-2001 Netfilter Core Team.
60
61       Distributed under the GNU General Public License.
62