Lists

Terms and Conditions
Lists hosted on this site
Email the Postmaster
Tips for posting to public mailing lists

Re: Programmatic Interface to pf (firewall)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Programmatic Interface to pf (firewall)

Subject: Re: Programmatic Interface to pf (firewall)
From: Vincent Lubet <email@hidden>
Date: Thu, 17 Oct 2013 16:41:19 -0700

On Oct 17, 2013, at 1:50 PM, comex <email@hidden> wrote:

> On Thu, Oct 17, 2013 at 2:02 AM, Scott Davies <email@hidden> wrote:
>> I have begun research on this and have just started to read about Network Kernel Extensions, however, I am curious if there is a way to do this from user space or if it is only a kernel space option.  In particular, an Objective-C interface for this to use from user space would be beneficial.
>
> The /dev/pf ioctl interface is the same as the one documented in BSD:
>
> http://www.freebsd.org/cgi/man.cgi?query=pf&sektion=4

A word of caution: the PF ioctls are not a public API for OS X and they exist in xnu only to support the needs of pfctl(8). That means the PF ioctls are not supported and may be modified or even removed from any release without advance notice.

Vincent
 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Darwin-kernel mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:

This email sent to email@hidden

Follow-Ups:
- Re: Programmatic Interface to pf (firewall)
  - From: Scott Davies <email@hidden>

References:
	>Programmatic Interface to pf (firewall) (From: Scott Davies <email@hidden>)
	>Re: Programmatic Interface to pf (firewall) (From: comex <email@hidden>)

Prev by Date: Re: Programmatic Interface to pf (firewall)
Next by Date: Re: Programmatic Interface to pf (firewall)
Previous by thread: Re: Programmatic Interface to pf (firewall)
Next by thread: Re: Programmatic Interface to pf (firewall)
Index(es):
- Date
- Thread