remoteaddress

package

v1.3.0 Latest Latest Go to latest Published: Jun 13, 2023 License: GPL-3.0 Imports: 10 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/bwNetFlow/flowpipeline

Links

Open Source Insights

Documentation ¶

Overview ¶

Determines the remote address of flows based on different criteria.

This segment basically runs flows through a switch case directive using its only config parameter, 'policy'. Some policies unlock additional parameters.

'cidr' matches first source address and then destination address against the prefixed provided in the CSV file using the config parameter 'filename'. When a match to a non-zero value occurs, the RemoteAddress indicator is set accordingly. Accordingly means that a non-zero value is assumed to be a customer ID as used by the 'AddCid' segment, i.e. the customer-address (whether it's source or destination) will be considered local. Optionally, unmatched flows can be dropped using 'dropunmatched'.

'border' assumes flows are exported on border interfaces: If a flow's direction is 'ingress' on such an interface, its remote address is the source address of the flow, whereas the local address of the flow would be its destination address inside our network. The same logic applies vice versa: 'egress' flows have a remote destination address.

'user' assumes flows are exported on user interfaces: If a flow's direction is 'ingress' on such an interface, its remote address is the destination address of the flow, whereas the local address of the flow would be its destination address inside our user's network. The same logic applies vice versa: 'egress' flows have a remote source address.

'clear' assumes flows are exported whereever, and thus all remote address info is cleared in this case.

Index ¶

type RemoteAddress
- func (segment RemoteAddress) New(config map[string]string) segments.Segment
- func (segment *RemoteAddress) Run(wg *sync.WaitGroup)

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type RemoteAddress ¶

type RemoteAddress struct {
	segments.BaseSegment
	Policy        string // required, 'cidr', 'border', 'user' and 'clear' are available options, see above
	FileName      string // optional, required if policy is set to 'cidr', default is empty
	DropUnmatched bool   // optional, default is false, relevant to 'cidr' only, determines what to do with unmatched flows
	// contains filtered or unexported fields
}

func (RemoteAddress) New ¶

func (segment RemoteAddress) New(config map[string]string) segments.Segment

func (*RemoteAddress) Run ¶

func (segment *RemoteAddress) Run(wg *sync.WaitGroup)

Source Files ¶

View all Source files

remoteaddress.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL