Query: ipq_set_verdict
OS: linux
Section: 3
Format: Original Unix Latex Style Formatted with HTML and a Horizontal Scroll Bar
IPQ_SET_VERDICT(3) Linux Programmer's Manual IPQ_SET_VERDICT(3)NAMEipq_set_verdict -- issue verdict and optionally modified packet to kernelSYNOPSIS#include <linux/netfilter.h> #include <libipq.h> int ipq_set_verdict(const struct ipq_handle *h, ipq_id_t id, unsigned int verdict, size_t data_len, unsigned char *buf);DESCRIPTIONThe ipq_set_verdict function issues a verdict on a packet previously obtained with ipq_read, specifing the intended disposition of the packet, and optionally supplying a modified version of the payload data. The h parameter is a context handle which must previously have been returned successfully from a call to ipq_create_handle. The id parameter is the packet identifier obtained via ipq_get_packet. The verdict parameter must be one of: NF_ACCEPT Accept the packet and continue traversal within the kernel. NF_DROP Drop the packet. NF_QUEUE Requeue the packet. NF_STOLEN and NF_REPEAT are kernel-internal constants and should not be used from userspace as their exact side effects have not been investigated. The data_len parameter is the length of the data pointed to by buf, the optional replacement payload data. If simply setting a verdict without modifying the payload data, use zero for data_len and NULL for buf. The application is responsible for recalculating any packet checksums when modifying packets.RETURN VALUEOn failure, -1 is returned. On success, a non-zero positive value is returned.ERRORSOn error, a descriptive error message will be available via the ipq_errstr function.BUGSNone known.AUTHORJames Morris <jmorris@intercode.com.au>COPYRIGHTCopyright (c) 2000-2001 Netfilter Core Team. Distributed under the GNU General Public License.SEE ALSOiptables(8), libipq(3). Linux iptables 1.2 16 October 2001 IPQ_SET_VERDICT(3)