usr.bin/netstat/pfsync.c

1.1  dyoung /*	$NetBSD: pfsync.c,v 1.1 2011/03/01 19:01:59 dyoung Exp $	*/
1.1  dyoung
1.1  dyoung /*
1.1  dyoung  * Copyright (c) 1983, 1988, 1993
1.1  dyoung  *	The Regents of the University of California.  All rights reserved.
1.1  dyoung  *
1.1  dyoung  * Redistribution and use in source and binary forms, with or without
1.1  dyoung  * modification, are permitted provided that the following conditions
1.1  dyoung  * are met:
1.1  dyoung  * 1. Redistributions of source code must retain the above copyright
1.1  dyoung  *    notice, this list of conditions and the following disclaimer.
1.1  dyoung  * 2. Redistributions in binary form must reproduce the above copyright
1.1  dyoung  *    notice, this list of conditions and the following disclaimer in the
1.1  dyoung  *    documentation and/or other materials provided with the distribution.
1.1  dyoung  * 3. Neither the name of the University nor the names of its contributors
1.1  dyoung  *    may be used to endorse or promote products derived from this software
1.1  dyoung  *    without specific prior written permission.
1.1  dyoung  *
1.1  dyoung  * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
1.1  dyoung  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
1.1  dyoung  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
1.1  dyoung  * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
1.1  dyoung  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
1.1  dyoung  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
1.1  dyoung  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
1.1  dyoung  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
1.1  dyoung  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
1.1  dyoung  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
1.1  dyoung  * SUCH DAMAGE.
1.1  dyoung  */
1.1  dyoung
1.1  dyoung #include <sys/cdefs.h>
1.1  dyoung #ifndef lint
1.1  dyoung __RCSID("$NetBSD: pfsync.c,v 1.1 2011/03/01 19:01:59 dyoung Exp $");
1.1  dyoung #endif /* not lint */
1.1  dyoung
1.1  dyoung #define	_CALLOUT_PRIVATE	/* for defs in sys/callout.h */
1.1  dyoung
1.1  dyoung #include <sys/param.h>
1.1  dyoung #include <sys/queue.h>
1.1  dyoung #include <sys/socket.h>
1.1  dyoung #include <sys/socketvar.h>
1.1  dyoung #include <sys/mbuf.h>
1.1  dyoung #include <sys/protosw.h>
1.1  dyoung #include <sys/sysctl.h>
1.1  dyoung
1.1  dyoung #include <net/if_arp.h>
1.1  dyoung #include <net/route.h>
1.1  dyoung #include <netinet/in.h>
1.1  dyoung #include <netinet/in_systm.h>
1.1  dyoung #include <netinet/ip.h>
1.1  dyoung #include <netinet/in_pcb.h>
1.1  dyoung #include <netinet/ip_icmp.h>
1.1  dyoung
1.1  dyoung #ifdef INET6
1.1  dyoung #include <netinet/ip6.h>
1.1  dyoung #endif
1.1  dyoung
1.1  dyoung #include <net/pfvar.h>
1.1  dyoung #include <net/if_pfsync.h>
1.1  dyoung
1.1  dyoung #include <arpa/inet.h>
1.1  dyoung #include <kvm.h>
1.1  dyoung #include <netdb.h>
1.1  dyoung #include <stdio.h>
1.1  dyoung #include <string.h>
1.1  dyoung #include <unistd.h>
1.1  dyoung #include <stdlib.h>
1.1  dyoung #include <err.h>
1.1  dyoung #include "netstat.h"
1.1  dyoung #include "prog_ops.h"
1.1  dyoung
1.1  dyoung /*
1.1  dyoung  * Dump PFSYNC statistics structure.
1.1  dyoung  */
1.1  dyoung void
1.1  dyoung pfsync_stats(u_long off, const char *name)
1.1  dyoung {
1.1  dyoung 	uint64_t pfsyncstat[PFSYNC_NSTATS];
1.1  dyoung
1.1  dyoung 	if (use_sysctl) {
1.1  dyoung 		size_t size = sizeof(pfsyncstat);
1.1  dyoung
1.1  dyoung 		if (sysctlbyname("net.inet.pfsync.stats", pfsyncstat, &size,
1.1  dyoung 				 NULL, 0) == -1)
1.1  dyoung 			return;
1.1  dyoung 	} else {
1.1  dyoung 		warnx("%s stats not available via KVM.", name);
1.1  dyoung 		return;
1.1  dyoung 	}
1.1  dyoung
1.1  dyoung 	printf("%s:\n", name);
1.1  dyoung
1.1  dyoung #define p(f, m) if (pfsyncstat[f] || sflag <= 1) \
1.1  dyoung 	printf(m, pfsyncstat[f], plural(pfsyncstat[f]))
1.1  dyoung #define p2(f, m) if (pfsyncstat[f] || sflag <= 1) \
1.1  dyoung 	printf(m, pfsyncstat[f])
1.1  dyoung
1.1  dyoung 	p(PFSYNC_STAT_IPACKETS, "\t%" PRIu64 " packet%s received (IPv4)\n");
1.1  dyoung 	p(PFSYNC_STAT_IPACKETS6,"\t%" PRIu64 " packet%s received (IPv6)\n");
1.1  dyoung 	p(PFSYNC_STAT_BADIF, "\t\t%" PRIu64 " packet%s discarded for bad interface\n");
1.1  dyoung 	p(PFSYNC_STAT_BADTTL, "\t\t%" PRIu64 " packet%s discarded for bad ttl\n");
1.1  dyoung 	p(PFSYNC_STAT_HDROPS, "\t\t%" PRIu64 " packet%s shorter than header\n");
1.1  dyoung 	p(PFSYNC_STAT_BADVER, "\t\t%" PRIu64 " packet%s discarded for bad version\n");
1.1  dyoung 	p(PFSYNC_STAT_BADAUTH, "\t\t%" PRIu64 " packet%s discarded for bad HMAC\n");
1.1  dyoung 	p(PFSYNC_STAT_BADACT,"\t\t%" PRIu64 " packet%s discarded for bad action\n");
1.1  dyoung 	p(PFSYNC_STAT_BADLEN, "\t\t%" PRIu64 " packet%s discarded for short packet\n");
1.1  dyoung 	p(PFSYNC_STAT_BADVAL, "\t\t%" PRIu64 " state%s discarded for bad values\n");
1.1  dyoung 	p(PFSYNC_STAT_STALE, "\t\t%" PRIu64 " stale state%s\n");
1.1  dyoung 	p(PFSYNC_STAT_BADSTATE, "\t\t%" PRIu64 " failed state lookup/insert%s\n");
1.1  dyoung 	p(PFSYNC_STAT_OPACKETS, "\t%" PRIu64 " packet%s sent (IPv4)\n");
1.1  dyoung 	p(PFSYNC_STAT_OPACKETS6, "\t%" PRIu64 " packet%s sent (IPv6)\n");
1.1  dyoung 	p2(PFSYNC_STAT_ONOMEM, "\t\t%" PRIu64 " send failed due to mbuf memory error\n");
1.1  dyoung 	p2(PFSYNC_STAT_OERRORS, "\t\t%" PRIu64 " send error\n");
1.1  dyoung #undef p
1.1  dyoung #undef p2
1.1  dyoung }
1.1  dyoung
1.1  dyoung