config

package

v0.4.2 Latest Latest Go to latest Published: Jul 29, 2022 License: Apache-2.0 Imports: 4 Imported by: 2

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/kumahq/kuma-net

Links

Open Source Insights

Documentation ¶

Index ¶

type Chain
- func (c Chain) GetFullName(prefix string) string
type Config
- func MergeConfigWithDefaults(cfg Config) Config
type DNS
type Ebpf
type Owner
type Redirect
type TrafficFlow

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type Chain ¶

type Chain struct {
	Name string
}

func (Chain) GetFullName ¶

func (c Chain) GetFullName(prefix string) string

type Config ¶

type Config struct {
	Owner    Owner
	Redirect Redirect
	Ebpf     Ebpf
	// DropInvalidPackets when set will enable configuration which should drop
	// packets in invalid states
	DropInvalidPackets bool
	// IPv6 when set will be used to configure iptables as well as ip6tables
	IPv6 bool
	// RuntimeStdout is the place where Any debugging, runtime information
	// will be placed (os.Stdout by default)
	RuntimeStdout io.Writer
	// RuntimeStderr is the place where error, runtime information will be
	// placed (os.Stderr by default)
	RuntimeStderr io.Writer
	// Verbose when set will generate iptables configuration with longer
	// argument/flag names, additional comments etc.
	Verbose bool
	// DryRun when set will not execute, but just display instructions which
	// otherwise would have served to install transparent proxy
	DryRun bool
}

func MergeConfigWithDefaults ¶

func MergeConfigWithDefaults(cfg Config) Config

func (Config) ShouldCaptureAllDNS ¶

func (c Config) ShouldCaptureAllDNS() bool

ShouldCaptureAllDNS is just a convenience function which can be used in iptables conditional command generations instead of inlining anonymous functions i.e. AppendIf(ShouldCaptureAllDNS, Match(...), Jump(Drop()))

func (Config) ShouldConntrackZoneSplit ¶

func (c Config) ShouldConntrackZoneSplit() bool

ShouldConntrackZoneSplit is a function which will check if DNS redirection and conntrack zone splitting settings are enabled (return false if not), and then will verify if there is conntrack iptables extension available to apply the DNS conntrack zone splitting iptables rules

func (Config) ShouldDropInvalidPackets ¶

func (c Config) ShouldDropInvalidPackets() bool

ShouldDropInvalidPackets is just a convenience function which can be used in iptables conditional command generations instead of inlining anonymous functions i.e. AppendIf(ShouldDropInvalidPackets, Match(...), Jump(Drop()))

func (Config) ShouldRedirectDNS ¶

func (c Config) ShouldRedirectDNS() bool

ShouldRedirectDNS is just a convenience function which can be used in iptables conditional command generations instead of inlining anonymous functions i.e. AppendIf(ShouldRedirectDNS, Match(...), Jump(Drop()))

type DNS ¶

type DNS struct {
	Enabled            bool
	CaptureAll         bool
	Port               uint16
	ConntrackZoneSplit bool
	ResolvConfigPath   string
}

type Ebpf ¶

type Ebpf struct {
	Enabled            bool
	InstanceIP         string
	BPFFSPath          string
	ProgramsSourcePath string
}

type Owner ¶

type Owner struct {
	UID string
}

type Redirect ¶

type Redirect struct {
	// NamePrefix is a prefix which will be used go generate chains name
	NamePrefix string
	Inbound    TrafficFlow
	Outbound   TrafficFlow
	DNS        DNS
}

type TrafficFlow ¶

type TrafficFlow struct {
	Enabled       bool
	Port          uint16
	PortIPv6      uint16
	Chain         Chain
	RedirectChain Chain
	ExcludePorts  []uint16
	IncludePorts  []uint16
}

TrafficFlow is a struct for Inbound/Outbound configuration

Source Files ¶

View all Source files

config.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL