rules

package

v1.8.3 Latest Latest Go to latest Published: May 10, 2018 License: Apache-2.0 Imports: 4 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/cloudfoundry/cf-networking-release

Documentation ¶

Index ¶

type IPTablesAdapter
type IPTablesRule
type LockedIPTables
type Restorer
- func (r *Restorer) Restore(input string) error

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type IPTablesAdapter ¶

type IPTablesAdapter interface {
	Exists(table, chain string, rulespec IPTablesRule) (bool, error)
	Delete(table, chain string, rulespec IPTablesRule) error
	List(table, chain string) ([]string, error)
	NewChain(table, chain string) error
	ClearChain(table, chain string) error
	DeleteChain(table, chain string) error
	BulkInsert(table, chain string, pos int, rulespec ...IPTablesRule) error
	BulkAppend(table, chain string, rulespec ...IPTablesRule) error
}

type IPTablesRule ¶

type IPTablesRule []string

func AppendComment ¶

func AppendComment(rule IPTablesRule, comment string) IPTablesRule

func NewAcceptExistingLocalRule ¶

func NewAcceptExistingLocalRule() IPTablesRule

func NewAcceptRule ¶

func NewAcceptRule() IPTablesRule

func NewDefaultDenyLocalRule ¶

func NewDefaultDenyLocalRule(localSubnet string) IPTablesRule

func NewDefaultEgressRule ¶

func NewDefaultEgressRule(localSubnet, deviceName string) IPTablesRule

func NewIngressMarkRule ¶

func NewIngressMarkRule(hostInterface string, hostPort int, hostIP, tag string) IPTablesRule

func NewInputAllowRule ¶

func NewInputAllowRule(protocol, destination string, destPort int) IPTablesRule

func NewInputDefaultRejectRule ¶

func NewInputDefaultRejectRule() IPTablesRule

func NewInputRelatedEstablishedRule ¶

func NewInputRelatedEstablishedRule() IPTablesRule

func NewLogLocalRejectRule ¶

func NewLogLocalRejectRule(localSubnet string) IPTablesRule

func NewLogRule ¶

func NewLogRule(rule IPTablesRule, name string) IPTablesRule

func NewMarkAllowLogRule ¶

func NewMarkAllowLogRule(destinationIP, protocol string, startPort, endPort int, tag string, destinationAppGUID string, acceptedUDPLogsPerSec int) IPTablesRule

func NewMarkAllowRule ¶

func NewMarkAllowRule(destinationIP, protocol string, startPort, endPort int, tag string, sourceAppGUID, destinationAppGUID string) IPTablesRule

func NewMarkSetRule ¶

func NewMarkSetRule(sourceIP, tag, appGUID string) IPTablesRule

func NewNetOutDefaultNonUDPLogRule ¶

func NewNetOutDefaultNonUDPLogRule(prefix string) IPTablesRule

func NewNetOutDefaultRejectLogRule ¶

func NewNetOutDefaultRejectLogRule(containerHandle string, deniedLogsPerSec int) IPTablesRule

func NewNetOutDefaultRejectRule ¶

func NewNetOutDefaultRejectRule() IPTablesRule

func NewNetOutDefaultUDPLogRule ¶

func NewNetOutDefaultUDPLogRule(prefix string, acceptedUDPLogsPerSec int) IPTablesRule

func NewNetOutICMPLogRule ¶

func NewNetOutICMPLogRule(startIP, endIP string, icmpType, icmpCode int, chain string) IPTablesRule

func NewNetOutICMPRule ¶

func NewNetOutICMPRule(startIP, endIP string, icmpType, icmpCode int) IPTablesRule

func NewNetOutLogRule ¶

func NewNetOutLogRule(startIP, endIP, chain string) IPTablesRule

func NewNetOutRelatedEstablishedRule ¶

func NewNetOutRelatedEstablishedRule() IPTablesRule

func NewNetOutRule ¶

func NewNetOutRule(startIP, endIP string) IPTablesRule

func NewNetOutWithPortsLogRule ¶

func NewNetOutWithPortsLogRule(startIP, endIP string, startPort, endPort int, protocol, chain string) IPTablesRule

func NewNetOutWithPortsRule ¶

func NewNetOutWithPortsRule(startIP, endIP string, startPort, endPort int, protocol string) IPTablesRule

func NewOverlayAllowEgress ¶

func NewOverlayAllowEgress(deviceName, containerIP string) IPTablesRule

func NewOverlayDefaultRejectLogRule ¶

func NewOverlayDefaultRejectLogRule(containerHandle, containerIP string, deniedLogsPerSec int) IPTablesRule

func NewOverlayDefaultRejectRule ¶

func NewOverlayDefaultRejectRule(containerIP string) IPTablesRule

func NewOverlayRelatedEstablishedRule ¶

func NewOverlayRelatedEstablishedRule(containerIP string) IPTablesRule

func NewOverlayTagAcceptRule ¶

func NewOverlayTagAcceptRule(containerIP, tag string) IPTablesRule

func NewPortForwardingRule ¶

func NewPortForwardingRule(hostPort, containerPort int, hostIP, containerIP string) IPTablesRule

type LockedIPTables ¶

type LockedIPTables struct {
	IPTables iptables
	Locker   locker
	Restorer restorer
}

func (*LockedIPTables) BulkAppend ¶

func (l *LockedIPTables) BulkAppend(table, chain string, rulespec ...IPTablesRule) error

func (*LockedIPTables) BulkInsert ¶

func (l *LockedIPTables) BulkInsert(table, chain string, pos int, rulespec ...IPTablesRule) error

func (*LockedIPTables) ClearChain ¶

func (l *LockedIPTables) ClearChain(table, chain string) error

func (*LockedIPTables) Delete ¶

func (l *LockedIPTables) Delete(table, chain string, rulespec IPTablesRule) error

func (*LockedIPTables) DeleteChain ¶

func (l *LockedIPTables) DeleteChain(table, chain string) error

func (*LockedIPTables) Exists ¶

func (l *LockedIPTables) Exists(table, chain string, rulespec IPTablesRule) (bool, error)

func (*LockedIPTables) List ¶

func (l *LockedIPTables) List(table, chain string) ([]string, error)

func (*LockedIPTables) NewChain ¶

func (l *LockedIPTables) NewChain(table, chain string) error

type Restorer ¶

type Restorer struct{}

func (*Restorer) Restore ¶

func (r *Restorer) Restore(input string) error

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL