remoteaddress

package
v0.10.2-beta Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Jan 11, 2023 License: GPL-3.0 Imports: 10 Imported by: 0

Documentation

Overview

Determines the remote address of flows based on different criteria.

This segment basically runs flows through a switch case directive using its only config parameter, 'policy'. Some policies unlock additional parameters.

'cidr' matches first source address and then destination address against the prefixed provided in the CSV file using the config parameter 'filename'. When a match to a non-zero value occurs, the RemoteAddress indicator is set accordingly. Accordingly means that a non-zero value is assumed to be a customer ID as used by the 'AddCid' segment, i.e. the customer-address (whether it's source or destination) will be considered local. Optionally, unmatched flows can be dropped using 'dropunmatched'.

'border' assumes flows are exported on border interfaces: If a flow's direction is 'ingress' on such an interface, its remote address is the source address of the flow, whereas the local address of the flow would be its destination address inside our network. The same logic applies vice versa: 'egress' flows have a remote destination address.

'user' assumes flows are exported on user interfaces: If a flow's direction is 'ingress' on such an interface, its remote address is the destination address of the flow, whereas the local address of the flow would be its destination address inside our user's network. The same logic applies vice versa: 'egress' flows have a remote source address.

'clear' assumes flows are exported whereever, and thus all remote address info is cleared in this case.

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type RemoteAddress

type RemoteAddress struct {
	segments.BaseSegment
	Policy        string // required, 'cidr', 'border', 'user' and 'clear' are available options, see above
	FileName      string // optional, required if policy is set to 'cidr', default is empty
	DropUnmatched bool   // optional, default is false, relevant to 'cidr' only, determines what to do with unmatched flows
	// contains filtered or unexported fields
}

func (RemoteAddress) New

func (segment RemoteAddress) New(config map[string]string) segments.Segment

func (*RemoteAddress) Run

func (segment *RemoteAddress) Run(wg *sync.WaitGroup)

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL