iptables

package

v1.1.3 Latest Latest Go to latest Published: May 26, 2020 License: MIT Imports: 3 Imported by: 3

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

View Source

const (
	CNIInputChain  = "AZURECNIINPUT"
	CNIOutputChain = "AZURECNIOUTPUT"
)

cni iptable chains

View Source

const (
	Input       = "INPUT"
	Output      = "OUTPUT"
	Forward     = "FORWARD"
	Prerouting  = "PREROUTING"
	Postrouting = "POSTROUTING"
)

standard iptable chains

View Source

const (
	Filter = "filter"
	Nat    = "nat"
	Mangle = "mangle"
)

Standard Table names

View Source

const (
	Accept     = "ACCEPT"
	Drop       = "DROP"
	Masquerade = "MASQUERADE"
)

target

View Source

const (
	Insert = "I"
	Append = "A"
	Delete = "D"
)

actions

View Source

const (
	Established = "ESTABLISHED"
	Related     = "RELATED"
)

states

View Source

const (
	V4 = "4"
	V6 = "6"
)

View Source

var (
	DisableIPTableLock bool
)

func AppendIptableRule(version, tableName, chainName, match, target string) error

Append iptable rule at end of iptable chain

func ChainExists(version, tableName, chainName string) bool

check if iptable chain alreay exists

func CreateChain(version, tableName, chainName string) error

create new iptable chain under specified table name

func DeleteIptableRule(version, tableName, chainName, match, target string) error

Delete matched iptable rule

func InsertIptableRule(version, tableName, chainName, match, target string) error

Insert iptable rule at beginning of iptable chain

func RuleExists(version, tableName, chainName, match, target string) bool

check if iptable rule alreay exists

This section is empty.