1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
|
/*
* active port forwarder - software for secure forwarding
* Copyright (C) 2003-2007 jeremian <jeremian [at] poczta.fm>
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
* Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
*
*/
#include <config.h>
#include <stdio.h>
#include <stdlib.h>
#include <assert.h>
#include "usage.h"
#include "network.h"
/*
* Function name: server_short_usage
* Description: Prints the short usage of the afserver.
* Arguments: info - the text printed in the first line
*/
void
server_short_usage(char* info)
{
assert(info != NULL);
printf("\n%s\n\n\n", info);
printf("Try `afserver --help' for more information.\n");
exit(1);
}
/*
* Function name: server_long_usage
* Description: Prints the long usage of the afserver.
* Arguments: info - the text printed in the first line
*/
void
server_long_usage(char* info)
{
assert(info != NULL);
printf("\n%s\n\n\n", info);
printf(" Basic options:\n\n");
printf(" -n, --hostname - it's used when creating listening sockets\n");
printf(" (default: '')\n");
printf(" -l, --listenport - listening [host:]port - users connect to it\n");
printf(" (default: 50127)\n");
printf(" -m, --manageport - manage [host:]port - afclient connects to it\n");
printf(" (default: 50126)\n");
printf(" -V, --version - display version number\n");
printf(" -h, --help - prints this help\n\n");
printf(" Authorization:\n\n");
printf(" --pass - set the password used for client identification\n");
printf(" (default: no password)\n\n");
printf(" Configuration:\n\n");
printf(" -c, --cerfile - the name of the file with certificate\n");
printf(" (default: server-cert.pem)\n");
printf(" -A, --cacerfile - the name of the file with CA certificates\n");
printf(" (if used, require clients to have valid certificates)\n");
printf(" -d, --cerdepth - the maximum depth of valid certificate-chains\n");
printf(" -k, --keyfile - the name of the file with RSA key (default: server.rsa)\n");
printf(" -f, --cfgfile - the name of the file with the configuration for the\n");
printf(" active forwarder (server)\n");
printf(" -D, --dateformat - format of the date printed in logs (see 'man strftime'\n");
printf(" for details) (default: %%Y-%%m-%%d %%H:%%M:%%S)\n");
printf(" -t, --timeout - the timeout value for the client's connection\n");
printf(" (default: 5)\n");
printf(" --maxidle - the maximum idle time for the client's connection\n");
printf(" (default: disabled)\n");
printf(" -u, --users - the amount of users allowed to use this server\n");
printf(" (default: 5)\n");
printf(" -C, --clients - the number of allowed clients to use this server\n");
printf(" (default: 1)\n");
printf(" -r, --realm - set the realm name (default: none)\n");
printf(" -R, --raclients - the number of allowed clients in remote administration\n");
printf(" mode to use this server (default: 1)\n");
printf(" -U, --usrpcli - the number of allowed users per client (default: $users)\n");
printf(" -M, --climode - strategy used to connect users with clients (default: 1)\n");
printf(" Available strategies:\n");
printf(" 1. fill first client before go to next\n\n");
printf(" -p, --proto - type of server (tcp|udp) - what protocol it will be\n");
printf(" operating for (default: tcp)\n");
printf(" -b, --baseport - listenports are temporary and differ for each client\n");
printf(" -a, --audit - additional information about connections are logged\n");
printf(" --nossl - ssl is not used to transfer data (but it's still used\n");
printf(" to establish a connection) (default: ssl is used)\n");
printf(" --nozlib - zlib is not used to compress data (default: zlib is\n");
printf(" used)\n");
printf(" --dnslookups - try to obtain dns names of the computers rather than\n");
printf(" their numeric IP\n\n");
printf(" Logging:\n\n");
printf(" -o, --log - log choosen information to file/socket\n");
printf(" -v, --verbose - to be verbose - program won't enter the daemon mode\n");
printf(" (use several times for greater effect)\n\n");
#ifdef AF_INET6
printf(" IP family:\n\n");
printf(" -4, --ipv4 - use ipv4 only\n");
printf(" -6, --ipv6 - use ipv6 only\n\n");
#endif
exit(0);
}
/*
* Function name: client_short_usage
* Description: Prints the short usage of the afclient.
* Arguments: info - the text printed in the first line
*/
void
client_short_usage(char* info)
{
assert(info != NULL);
printf("\n%s\n\n\n", info);
printf("Try `afclient --help' for more information.\n");
exit(1);
}
/*
* Function name: client_long_usage
* Description: Prints the long usage of the afclient.
* Arguments: info - the text printed in the first line
*/
void
client_long_usage(char* info)
{
assert(info != NULL);
printf("\n%s\n\n\n", info);
printf(" Basic options:\n\n");
printf(" -n, --servername - where the second part of the active\n");
printf(" port forwarder is running (required)\n");
printf(" -m, --manageport - manage port number - server must be\n");
printf(" listening on it (default: 50126)\n");
printf(" -d, --hostname - the name of this host/remote host - the final\n");
printf(" destination of the packets (default: the name\n");
printf(" returned by hostname function)\n");
printf(" -p, --portnum - the port we are forwarding connection to (required)\n");
printf(" --localname - local machine name for connection with afserver\n");
printf(" (used to bind socket to different interfaces)\n");
printf(" --localport - local port name for connection with afserver\n");
printf(" (used to bind socket to different addressees)\n");
printf(" --localdesname - local machine name for connections with destination\n");
printf(" application (used to bind socket to different interfaces)\n");
printf(" -V, --version - display version number\n");
printf(" -h, --help - prints this help\n\n");
printf(" Authorization:\n\n");
printf(" -i, --id - sends the id string to afserver\n");
printf(" --pass - set the password used for client identification\n");
printf(" (default: no password)\n");
printf(" --ignorepkeys - ignore invalid server's public keys\n\n");
printf(" Configuration:\n\n");
printf(" -k, --keyfile - the name of the file with RSA key (default: client.rsa)\n");
printf(" -c, --cerfile - the name of the file with certificate\n");
printf(" (default: no certificate used)\n");
printf(" -f, --cfgfile - the name of the file with the configuration for the\n");
printf(" active forwarder (client)\n");
printf(" -s, --storefile - the name of the file with stored public keys\n");
printf(" (default: known_hosts)\n");
printf(" -D, --dateformat - format of the date printed in logs (see 'man strftime'\n");
printf(" for details) (default: %%Y-%%m-%%d %%H:%%M:%%S)\n");
printf(" -K, --keep-alive N - send keepalive packets every N seconds\n");
printf(" (default: not send keepalive packets)\n\n");
printf(" Auto-reconnection:\n\n");
printf(" --ar-start - enable auto-reconnection when afserver is not\n");
printf(" reachable on start (default: disabled)\n");
printf(" --ar-quit - enable auto-reconnection after normal afserver quit\n");
printf(" (default: disabled)\n");
printf(" --noar - disable auto-reconnection after premature afserver\n");
printf(" quit (default: enabled)\n");
printf(" -A, --ar-tries N - try N times to reconnect (default: unlimited)\n");
printf(" -T, --ar-delay N - wait N seconds between reconnect tries (default: 5)\n\n");
printf(" Modes:\n\n");
printf(" -u, --udpmode - udp mode - client will use udp protocol to\n");
printf(" communicate with the hostname:portnum\n");
printf(" -U, --reverseudp - reverse udp forwarding. Udp packets will be forwarded\n");
printf(" from hostname:portnum to the server name:manageport\n");
printf(" -r, --remoteadmin - remote administration mode. (using '-p #port' will\n");
printf(" force afclient to use port rather than stdin-stdout)\n\n");
printf(" Logging:\n\n");
printf(" -o, --log - log choosen information to file/socket\n");
printf(" -v, --verbose - to be verbose - program won't enter the daemon mode\n");
printf(" (use several times for greater effect)\n\n");
#ifdef AF_INET6
printf(" IP family:\n\n");
printf(" -4, --ipv4 - use ipv4 only\n");
printf(" -6, --ipv6 - use ipv6 only\n\n");
#endif
#ifdef HAVE_LIBDL
printf(" Modules:\n\n");
printf(" -l, --load - load a module for user's packets filtering\n");
printf(" -L, --Load - load a module for service's packets filtering\n\n");
#endif
exit(0);
}
|