Documentation ¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func Delete ¶
Delete removes the ingress and egress rules that control traffic for endpoints. Note that the routes within these rules are not deleted as they can be reused when another endpoint is created on the same node. The reason for this is that ENI devices under-the-hood are simply network interfaces and all network interfaces have an ifindex. This index is then used as the table ID when these rules are created. The routes are created inside a table with this ID, and because this table ID equals the ENI ifindex, it's stable to rely on and therefore can be reused.
Types ¶
type RoutingInfo ¶
type RoutingInfo struct { // IPv4Gateway is the gateway where outbound/egress traffic is directed. IPv4Gateway net.IP // IPv4CIDRs is a list of CIDRs which the interface has access to. In most // cases, it'll at least contain the CIDR of the IPv4Gateway IP address. IPv4CIDRs []net.IPNet // MasterIfMAC is the MAC address of the master interface that egress // traffic is directed to. This is the MAC of the interface itself which // corresponds to the IPv4Gateway IP addr. MasterIfMAC mac.MAC }
RoutingInfo represents information that's required to enable connectivity via the local rule and route tables while in ENI or Azure IPAM mode. The information in this struct is used to create rules and routes which direct traffic out of the interface (egress).
This struct is mostly derived from the `ipam.AllocationResult` as the information comes from IPAM.
func NewRoutingInfo ¶
func NewRoutingInfo(gateway string, cidrs []string, mac string) (*RoutingInfo, error)
NewRoutingInfo creates a new RoutingInfo struct, from data that will be parsed and validated. Note, this code assumes IPv4 values because ENI + IPv4 is the only supported path currently.
func (*RoutingInfo) Configure ¶
Configure sets up the rules and routes needed when running in ENI or Azure IPAM mode. These rules and routes direct egress traffic out of the interface and ingress traffic back to the endpoint (`ip`).
ip: The endpoint IP address to direct traffic out / from interface. info: The interface routing info used to create rules and routes. mtu: The interface MTU. masq: Whether masquerading is enabled.