rules

package

v0.25.0 Latest Latest Go to latest Published: May 26, 2017 License: Apache-2.0 Imports: 7 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/k-paas/cf-networking-release

Documentation ¶

Index ¶

type IPTablesAdapter
type IPTablesLocker
- func (l *IPTablesLocker) Lock() error
- func (l *IPTablesLocker) Unlock() error
type IPTablesRule
type LockedIPTables
type Restorer
- func (r *Restorer) Restore(input string) error

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type IPTablesAdapter ¶ added in v0.7.0

type IPTablesAdapter interface {
	Exists(table, chain string, rulespec IPTablesRule) (bool, error)
	Delete(table, chain string, rulespec IPTablesRule) error
	List(table, chain string) ([]string, error)
	NewChain(table, chain string) error
	ClearChain(table, chain string) error
	DeleteChain(table, chain string) error
	BulkInsert(table, chain string, pos int, rulespec ...IPTablesRule) error
	BulkAppend(table, chain string, rulespec ...IPTablesRule) error
}

type IPTablesLocker ¶ added in v0.7.0

type IPTablesLocker struct {
	FileLocker filelock.FileLocker

	Mutex *sync.Mutex
	// contains filtered or unexported fields
}

func (*IPTablesLocker) Lock ¶ added in v0.7.0

func (l *IPTablesLocker) Lock() error

TODO improve test coverage / add a close function to filelocker

func (*IPTablesLocker) Unlock ¶ added in v0.7.0

func (l *IPTablesLocker) Unlock() error

type IPTablesRule ¶ added in v0.7.0

type IPTablesRule []string

func AppendComment ¶ added in v0.7.0

func AppendComment(rule IPTablesRule, comment string) IPTablesRule

func NewAcceptExistingLocalRule ¶

func NewAcceptExistingLocalRule() IPTablesRule

func NewAcceptRule ¶ added in v0.22.0

func NewAcceptRule() IPTablesRule

func NewDefaultDenyLocalRule ¶

func NewDefaultDenyLocalRule(localSubnet string) IPTablesRule

func NewDefaultEgressRule ¶

func NewDefaultEgressRule(localSubnet, deviceName string) IPTablesRule

func NewIngressMarkRule ¶ added in v0.23.0

func NewIngressMarkRule(hostInterface string, hostPort int, hostIP, tag string) IPTablesRule

func NewInputAllowRule ¶ added in v0.19.0

func NewInputAllowRule(protocol, destination string, destPort int) IPTablesRule

func NewInputDefaultRejectRule ¶ added in v0.10.0

func NewInputDefaultRejectRule() IPTablesRule

func NewInputRelatedEstablishedRule ¶ added in v0.10.0

func NewInputRelatedEstablishedRule() IPTablesRule

func NewLogLocalRejectRule ¶ added in v0.10.0

func NewLogLocalRejectRule(localSubnet string) IPTablesRule

func NewLogRule ¶

func NewLogRule(rule IPTablesRule, name string) IPTablesRule

func NewMarkAllowRule ¶

func NewMarkAllowRule(destinationIP, protocol string, port int, tag string, sourceAppGUID, destinationAppGUID string) IPTablesRule

func NewMarkLogRule ¶ added in v0.11.0

func NewMarkLogRule(destinationIP, protocol string, port int, tag string, destinationAppGUID string) IPTablesRule

func NewMarkSetRule ¶

func NewMarkSetRule(sourceIP, tag, appGUID string) IPTablesRule

func NewNetOutDefaultLogRule ¶ added in v0.7.0

func NewNetOutDefaultLogRule(prefix string) IPTablesRule

func NewNetOutDefaultRejectLogRule ¶ added in v0.19.0

func NewNetOutDefaultRejectLogRule(containerHandle string) IPTablesRule

func NewNetOutDefaultRejectRule ¶

func NewNetOutDefaultRejectRule() IPTablesRule

func NewNetOutICMPLogRule ¶ added in v0.20.0

func NewNetOutICMPLogRule(startIP, endIP string, icmpType, icmpCode int, chain string) IPTablesRule

func NewNetOutICMPRule ¶ added in v0.20.0

func NewNetOutICMPRule(startIP, endIP string, icmpType, icmpCode int) IPTablesRule

func NewNetOutLogRule ¶ added in v0.7.0

func NewNetOutLogRule(startIP, endIP, chain string) IPTablesRule

func NewNetOutRelatedEstablishedRule ¶

func NewNetOutRelatedEstablishedRule() IPTablesRule

func NewNetOutRule ¶

func NewNetOutRule(startIP, endIP string) IPTablesRule

func NewNetOutWithPortsLogRule ¶ added in v0.7.0

func NewNetOutWithPortsLogRule(startIP, endIP string, startPort, endPort int, protocol, chain string) IPTablesRule

func NewNetOutWithPortsRule ¶

func NewNetOutWithPortsRule(startIP, endIP string, startPort, endPort int, protocol string) IPTablesRule

func NewOverlayAllowEgress ¶ added in v0.23.0

func NewOverlayAllowEgress(deviceName, containerIP string) IPTablesRule

func NewOverlayDefaultRejectLogRule ¶ added in v0.22.0

func NewOverlayDefaultRejectLogRule(containerHandle, containerIP string) IPTablesRule

func NewOverlayDefaultRejectRule ¶ added in v0.22.0

func NewOverlayDefaultRejectRule(containerIP string) IPTablesRule

func NewOverlayRelatedEstablishedRule ¶ added in v0.22.0

func NewOverlayRelatedEstablishedRule(containerIP string) IPTablesRule

func NewOverlayTagAcceptRule ¶ added in v0.23.0

func NewOverlayTagAcceptRule(containerIP, tag string) IPTablesRule

func NewPortForwardingRule ¶ added in v0.23.0

func NewPortForwardingRule(hostPort, containerPort int, hostIP, containerIP string) IPTablesRule

type LockedIPTables ¶ added in v0.7.0

type LockedIPTables struct {
	IPTables iptables
	Locker   locker
	Restorer restorer
}

func (*LockedIPTables) BulkAppend ¶ added in v0.7.0

func (l *LockedIPTables) BulkAppend(table, chain string, rulespec ...IPTablesRule) error

func (*LockedIPTables) BulkInsert ¶ added in v0.7.0

func (l *LockedIPTables) BulkInsert(table, chain string, pos int, rulespec ...IPTablesRule) error

func (*LockedIPTables) ClearChain ¶ added in v0.7.0

func (l *LockedIPTables) ClearChain(table, chain string) error

func (*LockedIPTables) Delete ¶ added in v0.7.0

func (l *LockedIPTables) Delete(table, chain string, rulespec IPTablesRule) error

func (*LockedIPTables) DeleteChain ¶ added in v0.7.0

func (l *LockedIPTables) DeleteChain(table, chain string) error

func (*LockedIPTables) Exists ¶ added in v0.7.0

func (l *LockedIPTables) Exists(table, chain string, rulespec IPTablesRule) (bool, error)

func (*LockedIPTables) List ¶ added in v0.7.0

func (l *LockedIPTables) List(table, chain string) ([]string, error)

func (*LockedIPTables) NewChain ¶ added in v0.7.0

func (l *LockedIPTables) NewChain(table, chain string) error

type Restorer ¶ added in v0.7.0

type Restorer struct{}

func (*Restorer) Restore ¶ added in v0.7.0

func (r *Restorer) Restore(input string) error

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL