iptablesctrl

package

v8.4.0+incompatible Latest Latest Go to latest Published: Feb 21, 2018 License: Apache-2.0 Imports: 19 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

View Source

const (

	// PuPortSet The prefix for portset names
	PuPortSet = "PUPort-"

	// ProxyPort DefaultProxyPort
	ProxyPort = "5000"
)

This section is empty.

func PuPortSetName(contextID string, mark string, prefix string) string

PuPortSetName returns the name of the pu portset

type Instance struct {
	// contains filtered or unexported fields
}

Instance is the structure holding all information about a implementation

func NewInstance(fqc *fqconfig.FilterQueue, mode constants.ModeType, portset portset.PortSet) (*Instance, error)

NewInstance creates a new iptables controller instance

func (i *Instance) CleanAllSynAckPacketCaptures() error

CleanAllSynAckPacketCaptures cleans the capture rules for SynAck packets irrespective of NFQUEUE

func (i *Instance) CleanGlobalRules() error

CleanGlobalRules cleans the capture rules for SynAck packets

func (i *Instance) CleanUp() error

CleanUp requires the implementor to clean up all ACLs

func (i *Instance) ConfigureRules(version int, contextID string, containerInfo *policy.PUInfo) error

ConfigureRules implmenets the ConfigureRules interface

func (i *Instance) DeleteRules(version int, contextID string, port string, mark string, uid string, proxyPort string, proxyPortSetName string) error

DeleteRules implements the DeleteRules interface

func (i *Instance) InitializeChains() error

InitializeChains initializes the chains.

func (i *Instance) Run(ctx context.Context) error

Run starts the iptables controller

func (i *Instance) SetTargetNetworks(current, networks []string) error

SetTargetNetworks updates ths target networks for SynAck packets

func (i *Instance) UpdateRules(version int, contextID string, containerInfo *policy.PUInfo, oldContainerInfo *policy.PUInfo) error

UpdateRules implements the update part of the interface