iptables

package

v1.5.34 Latest Latest Go to latest Published: Jul 29, 2024 License: MIT Imports: 4 Imported by: 3

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/Azure/azure-container-networking

Links

Open Source Insights

Documentation ¶

Constants ¶

View Source

const (
	CNIInputChain  = "AZURECNIINPUT"
	CNIOutputChain = "AZURECNIOUTPUT"
)

cni iptable chains

View Source

const (
	Input       = "INPUT"
	Output      = "OUTPUT"
	Forward     = "FORWARD"
	Prerouting  = "PREROUTING"
	Postrouting = "POSTROUTING"
	Swift       = "SWIFT"
	Snat        = "SNAT"
	Return      = "RETURN"
)

standard iptable chains

View Source

const (
	Filter = "filter"
	Nat    = "nat"
	Mangle = "mangle"
)

Standard Table names

View Source

const (
	Accept     = "ACCEPT"
	Drop       = "DROP"
	Masquerade = "MASQUERADE"
)

target

View Source

const (
	Insert = "I"
	Append = "A"
	Delete = "D"
)

actions

View Source

const (
	Established = "ESTABLISHED"
	Related     = "RELATED"
)

states

View Source

const (
	V4 = "4"
	V6 = "6"
)

View Source

const (
	DNSPort  = 53
	HTTPPort = 80
)

known ports

View Source

const (
	UDP = "udp"
	TCP = "tcp"
)

known protocols

Variables ¶

View Source

var DisableIPTableLock bool

Functions ¶

This section is empty.

Types ¶

type Client ¶ added in v1.5.17

type Client struct{}

func NewClient ¶ added in v1.5.17

func NewClient() *Client

func (*Client) AppendIptableRule ¶ added in v1.5.17

func (c *Client) AppendIptableRule(version, tableName, chainName, match, target string) error

Append iptable rule at end of iptable chain

func (*Client) ChainExists ¶ added in v1.5.17

func (c *Client) ChainExists(version, tableName, chainName string) bool

check if iptable chain alreay exists

func (*Client) CreateChain ¶ added in v1.5.17

func (c *Client) CreateChain(version, tableName, chainName string) error

create new iptable chain under specified table name

func (*Client) DeleteIptableRule ¶ added in v1.5.17

func (c *Client) DeleteIptableRule(version, tableName, chainName, match, target string) error

Delete matched iptable rule

func (*Client) GetAppendIptableRuleCmd ¶ added in v1.5.17

func (c *Client) GetAppendIptableRuleCmd(version, tableName, chainName, match, target string) IPTableEntry

func (*Client) GetCreateChainCmd ¶ added in v1.5.17

func (c *Client) GetCreateChainCmd(version, tableName, chainName string) IPTableEntry

func (*Client) GetInsertIptableRuleCmd ¶ added in v1.5.17

func (c *Client) GetInsertIptableRuleCmd(version, tableName, chainName, match, target string) IPTableEntry

func (*Client) InsertIptableRule ¶ added in v1.5.17

func (c *Client) InsertIptableRule(version, tableName, chainName, match, target string) error

Insert iptable rule at beginning of iptable chain

func (*Client) RuleExists ¶ added in v1.5.17

func (c *Client) RuleExists(version, tableName, chainName, match, target string) bool

check if iptable rule alreay exists

func (*Client) RunCmd ¶ added in v1.5.17

func (c *Client) RunCmd(version, params string) error

Run iptables command

type IPTableEntry ¶

type IPTableEntry struct {
	Version string
	Params  string
}

Source Files ¶

View all Source files

iptables.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL