For those following this discussion.
Even though using ioctl()s to add and remove rules to/from the kernel is the right thing to do long term, there are a lot of issues surrounding it.
So I added support to call the "ipnat" command executable. This means it should be by far more portable, and work on already running systems. I have only tried it with NetBSD 2.0, and Solaris 10.
If you want to check it out, use one of:
> Latest tarball: http://www.lundman.net/ftp/l4ip/l4ip-v1.0.b248.tgz > CVS: ":pserver:[EMAIL PROTECTED]:/home/cvsroot" co l4ip (pass anoncvs)
Lund
-- Jorgen Lundman | <[EMAIL PROTECTED]> Unix Administrator | +81 (0)3 -5456-2687 ext 1017 (work) Shibuya-ku, Tokyo | +81 (0)90-5578-8500 (cell) Japan | +81 (0)3 -3375-1767 (home)
