vpp_ipsec

package
v3.5.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Feb 6, 2023 License: Apache-2.0 Imports: 8 Imported by: 5

Documentation

Index

Constants

View Source 
const (
	// InvalidKeyPart is used in key for parts which are invalid
	InvalidKeyPart = "<invalid>"
)
View Source 
const ModuleName = "vpp.ipsec"

ModuleName is the module name used for models.

Variables

View Source 
var (
	CryptoAlg_name = map[int32]string{
		0:  "NONE_CRYPTO",
		1:  "AES_CBC_128",
		2:  "AES_CBC_192",
		3:  "AES_CBC_256",
		4:  "AES_CTR_128",
		5:  "AES_CTR_192",
		6:  "AES_CTR_256",
		7:  "AES_GCM_128",
		8:  "AES_GCM_192",
		9:  "AES_GCM_256",
		10: "DES_CBC",
		11: "DES3_CBC",
	}
	CryptoAlg_value = map[string]int32{
		"NONE_CRYPTO": 0,
		"AES_CBC_128": 1,
		"AES_CBC_192": 2,
		"AES_CBC_256": 3,
		"AES_CTR_128": 4,
		"AES_CTR_192": 5,
		"AES_CTR_256": 6,
		"AES_GCM_128": 7,
		"AES_GCM_192": 8,
		"AES_GCM_256": 9,
		"DES_CBC":     10,
		"DES3_CBC":    11,
	}
)

Enum value maps for CryptoAlg.

View Source 
var (
	IntegAlg_name = map[int32]string{
		0: "NONE_INTEG",
		1: "MD5_96",
		2: "SHA1_96",
		3: "SHA_256_96",
		4: "SHA_256_128",
		5: "SHA_384_192",
		6: "SHA_512_256",
	}
	IntegAlg_value = map[string]int32{
		"NONE_INTEG":  0,
		"MD5_96":      1,
		"SHA1_96":     2,
		"SHA_256_96":  3,
		"SHA_256_128": 4,
		"SHA_384_192": 5,
		"SHA_512_256": 6,
	}
)

Enum value maps for IntegAlg.

View Source 
var (
	SecurityPolicyDatabase_PolicyEntry_Action_name = map[int32]string{
		0: "BYPASS",
		1: "DISCARD",
		2: "RESOLVE",
		3: "PROTECT",
	}
	SecurityPolicyDatabase_PolicyEntry_Action_value = map[string]int32{
		"BYPASS":  0,
		"DISCARD": 1,
		"RESOLVE": 2,
		"PROTECT": 3,
	}
)

Enum value maps for SecurityPolicyDatabase_PolicyEntry_Action.

View Source 
var (
	SecurityPolicy_Action_name = map[int32]string{
		0: "BYPASS",
		1: "DISCARD",
		2: "RESOLVE",
		3: "PROTECT",
	}
	SecurityPolicy_Action_value = map[string]int32{
		"BYPASS":  0,
		"DISCARD": 1,
		"RESOLVE": 2,
		"PROTECT": 3,
	}
)

Enum value maps for SecurityPolicy_Action.

View Source 
var (
	SecurityAssociation_IPSecProtocol_name = map[int32]string{
		0: "AH",
		1: "ESP",
	}
	SecurityAssociation_IPSecProtocol_value = map[string]int32{
		"AH":  0,
		"ESP": 1,
	}
)

Enum value maps for SecurityAssociation_IPSecProtocol.

View Source 
var (
	ModelSecurityPolicyDatabase = models.Register(&SecurityPolicyDatabase{}, models.Spec{
		Module:  ModuleName,
		Version: "v2",
		Type:    "spd",
	}, models.WithNameTemplate("{{.Index}}"))

	ModelSecurityPolicy = models.Register(&SecurityPolicy{}, models.Spec{
		Module:  ModuleName,
		Version: "v2",
		Type:    "sp",
	}, models.WithNameTemplate(
		"spd/{{.SpdIndex}}/"+
			"sa/{{.SaIndex}}/"+
			"{{if .IsOutbound}}outbound/{{else}}inbound/{{end}}"+
			"local-addresses/{{.LocalAddrStart}}-{{.LocalAddrStop}}/"+
			"remote-addresses/{{.RemoteAddrStart}}-{{.RemoteAddrStop}}"))

	ModelSecurityAssociation = models.Register(&SecurityAssociation{}, models.Spec{
		Module:  ModuleName,
		Version: "v2",
		Type:    "sa",
	}, models.WithNameTemplate("{{.Index}}"))

	ModelTunnelProtection = models.Register(&TunnelProtection{}, models.Spec{
		Module:  ModuleName,
		Version: "v2",
		Type:    "tun-protect",
	}, models.WithNameTemplate(
		`{{.Interface}}`+
			`{{if .NextHopAddr}}/nh/{{.NextHopAddr}}{{end}}`,
	))
)
View Source 
var File_ligato_vpp_ipsec_ipsec_proto protoreflect.FileDescriptor

Functions

func ParseSPDInterfaceKey 

func ParseSPDInterfaceKey(key string) (spdIndex string, iface string, isSPDIfaceKey bool)

ParseSPDInterfaceKey parses key representing binding between interface and a security policy database

func SAKey 

func SAKey(index uint32) string

SAKey returns the key used in NB DB to store the configuration of the given security association configuration.

func SPDInterfaceKey 

func SPDInterfaceKey(spdIndex uint32, ifName string) string

SPDInterfaceKey returns the key used to represent binding between the given interface and the security policy database.

func SPDKey 

func SPDKey(index uint32) string

SPDKey returns the key used in NB DB to store the configuration of the given security policy database configuration.

Types

type CryptoAlg 

type CryptoAlg int32

Cryptographic algorithm for encryption 

const (
	CryptoAlg_NONE_CRYPTO CryptoAlg = 0
	CryptoAlg_AES_CBC_128 CryptoAlg = 1
	CryptoAlg_AES_CBC_192 CryptoAlg = 2
	CryptoAlg_AES_CBC_256 CryptoAlg = 3
	CryptoAlg_AES_CTR_128 CryptoAlg = 4
	CryptoAlg_AES_CTR_192 CryptoAlg = 5
	CryptoAlg_AES_CTR_256 CryptoAlg = 6
	CryptoAlg_AES_GCM_128 CryptoAlg = 7
	CryptoAlg_AES_GCM_192 CryptoAlg = 8
	CryptoAlg_AES_GCM_256 CryptoAlg = 9
	CryptoAlg_DES_CBC     CryptoAlg = 10
	CryptoAlg_DES3_CBC    CryptoAlg = 11 // 3DES_CBC
)

func (CryptoAlg) Descriptor added in v3.2.0 

func (CryptoAlg) Descriptor() protoreflect.EnumDescriptor

func (CryptoAlg) Enum added in v3.2.0 

func (x CryptoAlg) Enum() *CryptoAlg

func (CryptoAlg) EnumDescriptor deprecated 

func (CryptoAlg) EnumDescriptor() ([]byte, []int)

Deprecated: Use CryptoAlg.Descriptor instead.

func (CryptoAlg) Number added in v3.2.0 

func (x CryptoAlg) Number() protoreflect.EnumNumber

func (CryptoAlg) String 

func (x CryptoAlg) String() string

func (CryptoAlg) Type added in v3.2.0 

func (CryptoAlg) Type() protoreflect.EnumType

type IntegAlg 

type IntegAlg int32

Cryptographic algorithm for authentication 

const (
	IntegAlg_NONE_INTEG  IntegAlg = 0
	IntegAlg_MD5_96      IntegAlg = 1 // RFC2403
	IntegAlg_SHA1_96     IntegAlg = 2 // RFC2404
	IntegAlg_SHA_256_96  IntegAlg = 3 // draft-ietf-ipsec-ciph-sha-256-00
	IntegAlg_SHA_256_128 IntegAlg = 4 // RFC4868
	IntegAlg_SHA_384_192 IntegAlg = 5 // RFC4868
	IntegAlg_SHA_512_256 IntegAlg = 6 // RFC4868
)

func (IntegAlg) Descriptor added in v3.2.0 

func (IntegAlg) Descriptor() protoreflect.EnumDescriptor

func (IntegAlg) Enum added in v3.2.0 

func (x IntegAlg) Enum() *IntegAlg

func (IntegAlg) EnumDescriptor deprecated 

func (IntegAlg) EnumDescriptor() ([]byte, []int)

Deprecated: Use IntegAlg.Descriptor instead.

func (IntegAlg) Number added in v3.2.0 

func (x IntegAlg) Number() protoreflect.EnumNumber

func (IntegAlg) String 

func (x IntegAlg) String() string

func (IntegAlg) Type added in v3.2.0 

func (IntegAlg) Type() protoreflect.EnumType

type SecurityAssociation 

type SecurityAssociation struct {
	Index          uint32                            `protobuf:"varint,1,opt,name=index,proto3" json:"index,omitempty"`                                                          // Numerical security association index, serves as a unique identifier
	Spi            uint32                            `protobuf:"varint,2,opt,name=spi,proto3" json:"spi,omitempty"`                                                              // Security parameter index
	Protocol       SecurityAssociation_IPSecProtocol ``                                                                                                                          /* 126-byte string literal not displayed */
	CryptoAlg      CryptoAlg                         `protobuf:"varint,4,opt,name=crypto_alg,json=cryptoAlg,proto3,enum=ligato.vpp.ipsec.CryptoAlg" json:"crypto_alg,omitempty"` // Cryptographic algorithm for encryption
	CryptoKey      string                            `protobuf:"bytes,5,opt,name=crypto_key,json=cryptoKey,proto3" json:"crypto_key,omitempty"`
	CryptoSalt     uint32                            `protobuf:"varint,15,opt,name=crypto_salt,json=cryptoSalt,proto3" json:"crypto_salt,omitempty"`
	IntegAlg       IntegAlg                          `protobuf:"varint,6,opt,name=integ_alg,json=integAlg,proto3,enum=ligato.vpp.ipsec.IntegAlg" json:"integ_alg,omitempty"` // Cryptographic algorithm for authentication
	IntegKey       string                            `protobuf:"bytes,7,opt,name=integ_key,json=integKey,proto3" json:"integ_key,omitempty"`
	UseEsn         bool                              `protobuf:"varint,8,opt,name=use_esn,json=useEsn,proto3" json:"use_esn,omitempty"`                        // Use extended sequence number
	UseAntiReplay  bool                              `protobuf:"varint,9,opt,name=use_anti_replay,json=useAntiReplay,proto3" json:"use_anti_replay,omitempty"` // Use anti replay
	TunnelSrcAddr  string                            `protobuf:"bytes,10,opt,name=tunnel_src_addr,json=tunnelSrcAddr,proto3" json:"tunnel_src_addr,omitempty"`
	TunnelDstAddr  string                            `protobuf:"bytes,11,opt,name=tunnel_dst_addr,json=tunnelDstAddr,proto3" json:"tunnel_dst_addr,omitempty"`
	EnableUdpEncap bool                              `protobuf:"varint,12,opt,name=enable_udp_encap,json=enableUdpEncap,proto3" json:"enable_udp_encap,omitempty"` // Enable UDP encapsulation for NAT traversal
	TunnelSrcPort  uint32                            `protobuf:"varint,13,opt,name=tunnel_src_port,json=tunnelSrcPort,proto3" json:"tunnel_src_port,omitempty"`
	TunnelDstPort  uint32                            `protobuf:"varint,14,opt,name=tunnel_dst_port,json=tunnelDstPort,proto3" json:"tunnel_dst_port,omitempty"`
	// contains filtered or unexported fields
}

Security Association (SA)

func (*SecurityAssociation) Descriptor deprecated 

func (*SecurityAssociation) Descriptor() ([]byte, []int)

Deprecated: Use SecurityAssociation.ProtoReflect.Descriptor instead.

func (*SecurityAssociation) GetCryptoAlg 

func (x *SecurityAssociation) GetCryptoAlg() CryptoAlg

func (*SecurityAssociation) GetCryptoKey 

func (x *SecurityAssociation) GetCryptoKey() string

func (*SecurityAssociation) GetCryptoSalt added in v3.2.0 

func (x *SecurityAssociation) GetCryptoSalt() uint32

func (*SecurityAssociation) GetEnableUdpEncap 

func (x *SecurityAssociation) GetEnableUdpEncap() bool

func (*SecurityAssociation) GetIndex 

func (x *SecurityAssociation) GetIndex() uint32

func (*SecurityAssociation) GetIntegAlg 

func (x *SecurityAssociation) GetIntegAlg() IntegAlg

func (*SecurityAssociation) GetIntegKey 

func (x *SecurityAssociation) GetIntegKey() string

func (*SecurityAssociation) GetProtocol 

func (x *SecurityAssociation) GetProtocol() SecurityAssociation_IPSecProtocol

func (*SecurityAssociation) GetSpi 

func (x *SecurityAssociation) GetSpi() uint32

func (*SecurityAssociation) GetTunnelDstAddr 

func (x *SecurityAssociation) GetTunnelDstAddr() string

func (*SecurityAssociation) GetTunnelDstPort added in v3.2.0 

func (x *SecurityAssociation) GetTunnelDstPort() uint32

func (*SecurityAssociation) GetTunnelSrcAddr 

func (x *SecurityAssociation) GetTunnelSrcAddr() string

func (*SecurityAssociation) GetTunnelSrcPort added in v3.2.0 

func (x *SecurityAssociation) GetTunnelSrcPort() uint32

func (*SecurityAssociation) GetUseAntiReplay 

func (x *SecurityAssociation) GetUseAntiReplay() bool

func (*SecurityAssociation) GetUseEsn 

func (x *SecurityAssociation) GetUseEsn() bool

func (*SecurityAssociation) ProtoMessage 

func (*SecurityAssociation) ProtoMessage()

func (*SecurityAssociation) ProtoReflect added in v3.2.0 

func (x *SecurityAssociation) ProtoReflect() protoreflect.Message

func (*SecurityAssociation) Reset 

func (x *SecurityAssociation) Reset()

func (*SecurityAssociation) String 

func (x *SecurityAssociation) String() string

type SecurityAssociation_IPSecProtocol 

type SecurityAssociation_IPSecProtocol int32
const (
	SecurityAssociation_AH  SecurityAssociation_IPSecProtocol = 0 // Authentication Header, provides a mechanism for authentication only
	SecurityAssociation_ESP SecurityAssociation_IPSecProtocol = 1 // Encapsulating Security Payload is for data confidentiality and authentication
)

func (SecurityAssociation_IPSecProtocol) Descriptor added in v3.2.0 

func (SecurityAssociation_IPSecProtocol) Descriptor() protoreflect.EnumDescriptor

func (SecurityAssociation_IPSecProtocol) Enum added in v3.2.0 

func (x SecurityAssociation_IPSecProtocol) Enum() *SecurityAssociation_IPSecProtocol

func (SecurityAssociation_IPSecProtocol) EnumDescriptor deprecated 

func (SecurityAssociation_IPSecProtocol) EnumDescriptor() ([]byte, []int)

Deprecated: Use SecurityAssociation_IPSecProtocol.Descriptor instead.

func (SecurityAssociation_IPSecProtocol) Number added in v3.2.0 

func (x SecurityAssociation_IPSecProtocol) Number() protoreflect.EnumNumber

func (SecurityAssociation_IPSecProtocol) String 

func (x SecurityAssociation_IPSecProtocol) String() string

func (SecurityAssociation_IPSecProtocol) Type added in v3.2.0 

func (SecurityAssociation_IPSecProtocol) Type() protoreflect.EnumType

type SecurityPolicy added in v3.2.0 

type SecurityPolicy struct {
	SpdIndex        uint32                `protobuf:"varint,1,opt,name=spd_index,json=spdIndex,proto3" json:"spd_index,omitempty"` // Security policy database index
	SaIndex         uint32                `protobuf:"varint,2,opt,name=sa_index,json=saIndex,proto3" json:"sa_index,omitempty"`    // Security association index
	Priority        int32                 `protobuf:"varint,3,opt,name=priority,proto3" json:"priority,omitempty"`
	IsOutbound      bool                  `protobuf:"varint,4,opt,name=is_outbound,json=isOutbound,proto3" json:"is_outbound,omitempty"`
	RemoteAddrStart string                `protobuf:"bytes,5,opt,name=remote_addr_start,json=remoteAddrStart,proto3" json:"remote_addr_start,omitempty"`
	RemoteAddrStop  string                `protobuf:"bytes,6,opt,name=remote_addr_stop,json=remoteAddrStop,proto3" json:"remote_addr_stop,omitempty"`
	LocalAddrStart  string                `protobuf:"bytes,7,opt,name=local_addr_start,json=localAddrStart,proto3" json:"local_addr_start,omitempty"`
	LocalAddrStop   string                `protobuf:"bytes,8,opt,name=local_addr_stop,json=localAddrStop,proto3" json:"local_addr_stop,omitempty"`
	Protocol        uint32                `protobuf:"varint,9,opt,name=protocol,proto3" json:"protocol,omitempty"`
	RemotePortStart uint32                `protobuf:"varint,10,opt,name=remote_port_start,json=remotePortStart,proto3" json:"remote_port_start,omitempty"`
	RemotePortStop  uint32                `protobuf:"varint,11,opt,name=remote_port_stop,json=remotePortStop,proto3" json:"remote_port_stop,omitempty"`
	LocalPortStart  uint32                `protobuf:"varint,12,opt,name=local_port_start,json=localPortStart,proto3" json:"local_port_start,omitempty"`
	LocalPortStop   uint32                `protobuf:"varint,13,opt,name=local_port_stop,json=localPortStop,proto3" json:"local_port_stop,omitempty"`
	Action          SecurityPolicy_Action `protobuf:"varint,14,opt,name=action,proto3,enum=ligato.vpp.ipsec.SecurityPolicy_Action" json:"action,omitempty"`
	// contains filtered or unexported fields
}

func (*SecurityPolicy) Descriptor deprecated added in v3.2.0 

func (*SecurityPolicy) Descriptor() ([]byte, []int)

Deprecated: Use SecurityPolicy.ProtoReflect.Descriptor instead.

func (*SecurityPolicy) GetAction added in v3.2.0 

func (x *SecurityPolicy) GetAction() SecurityPolicy_Action

func (*SecurityPolicy) GetIsOutbound added in v3.2.0 

func (x *SecurityPolicy) GetIsOutbound() bool

func (*SecurityPolicy) GetLocalAddrStart added in v3.2.0 

func (x *SecurityPolicy) GetLocalAddrStart() string

func (*SecurityPolicy) GetLocalAddrStop added in v3.2.0 

func (x *SecurityPolicy) GetLocalAddrStop() string

func (*SecurityPolicy) GetLocalPortStart added in v3.2.0 

func (x *SecurityPolicy) GetLocalPortStart() uint32

func (*SecurityPolicy) GetLocalPortStop added in v3.2.0 

func (x *SecurityPolicy) GetLocalPortStop() uint32

func (*SecurityPolicy) GetPriority added in v3.2.0 

func (x *SecurityPolicy) GetPriority() int32

func (*SecurityPolicy) GetProtocol added in v3.2.0 

func (x *SecurityPolicy) GetProtocol() uint32

func (*SecurityPolicy) GetRemoteAddrStart added in v3.2.0 

func (x *SecurityPolicy) GetRemoteAddrStart() string

func (*SecurityPolicy) GetRemoteAddrStop added in v3.2.0 

func (x *SecurityPolicy) GetRemoteAddrStop() string

func (*SecurityPolicy) GetRemotePortStart added in v3.2.0 

func (x *SecurityPolicy) GetRemotePortStart() uint32

func (*SecurityPolicy) GetRemotePortStop added in v3.2.0 

func (x *SecurityPolicy) GetRemotePortStop() uint32

func (*SecurityPolicy) GetSaIndex added in v3.2.0 

func (x *SecurityPolicy) GetSaIndex() uint32

func (*SecurityPolicy) GetSpdIndex added in v3.2.0 

func (x *SecurityPolicy) GetSpdIndex() uint32

func (*SecurityPolicy) ProtoMessage added in v3.2.0 

func (*SecurityPolicy) ProtoMessage()

func (*SecurityPolicy) ProtoReflect added in v3.2.0 

func (x *SecurityPolicy) ProtoReflect() protoreflect.Message

func (*SecurityPolicy) Reset added in v3.2.0 

func (x *SecurityPolicy) Reset()

func (*SecurityPolicy) String added in v3.2.0 

func (x *SecurityPolicy) String() string

type SecurityPolicyDatabase 

type SecurityPolicyDatabase struct {
	Index      uint32                              `protobuf:"varint,1,opt,name=index,proto3" json:"index,omitempty"`          // Numerical security policy database index, serves as a unique identifier
	Interfaces []*SecurityPolicyDatabase_Interface `protobuf:"bytes,2,rep,name=interfaces,proto3" json:"interfaces,omitempty"` // List of interfaces belonging to this SPD
	// List of policy entries belonging to this SPD.
	// Deprecated and actually trying to use this will return an error.
	// Use separate model for Security Policy (SP) defined below.
	//
	// Deprecated: Do not use.
	PolicyEntries []*SecurityPolicyDatabase_PolicyEntry `protobuf:"bytes,3,rep,name=policy_entries,json=policyEntries,proto3" json:"policy_entries,omitempty"`
	// contains filtered or unexported fields
}

Security Policy Database (SPD)

func (*SecurityPolicyDatabase) Descriptor deprecated 

func (*SecurityPolicyDatabase) Descriptor() ([]byte, []int)

Deprecated: Use SecurityPolicyDatabase.ProtoReflect.Descriptor instead.

func (*SecurityPolicyDatabase) GetIndex 

func (x *SecurityPolicyDatabase) GetIndex() uint32

func (*SecurityPolicyDatabase) GetInterfaces 

func (x *SecurityPolicyDatabase) GetInterfaces() []*SecurityPolicyDatabase_Interface

func (*SecurityPolicyDatabase) GetPolicyEntries deprecated 

func (x *SecurityPolicyDatabase) GetPolicyEntries() []*SecurityPolicyDatabase_PolicyEntry

Deprecated: Do not use.

func (*SecurityPolicyDatabase) ProtoMessage 

func (*SecurityPolicyDatabase) ProtoMessage()

func (*SecurityPolicyDatabase) ProtoReflect added in v3.2.0 

func (x *SecurityPolicyDatabase) ProtoReflect() protoreflect.Message

func (*SecurityPolicyDatabase) Reset 

func (x *SecurityPolicyDatabase) Reset()

func (*SecurityPolicyDatabase) String 

func (x *SecurityPolicyDatabase) String() string

type SecurityPolicyDatabase_Interface 

type SecurityPolicyDatabase_Interface struct {
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"` // Name of the related interface
	// contains filtered or unexported fields
}

func (*SecurityPolicyDatabase_Interface) Descriptor deprecated 

func (*SecurityPolicyDatabase_Interface) Descriptor() ([]byte, []int)

Deprecated: Use SecurityPolicyDatabase_Interface.ProtoReflect.Descriptor instead.

func (*SecurityPolicyDatabase_Interface) GetName 

func (x *SecurityPolicyDatabase_Interface) GetName() string

func (*SecurityPolicyDatabase_Interface) ProtoMessage 

func (*SecurityPolicyDatabase_Interface) ProtoMessage()

func (*SecurityPolicyDatabase_Interface) ProtoReflect added in v3.2.0 

func (x *SecurityPolicyDatabase_Interface) ProtoReflect() protoreflect.Message

func (*SecurityPolicyDatabase_Interface) Reset 

func (x *SecurityPolicyDatabase_Interface) Reset()

func (*SecurityPolicyDatabase_Interface) String 

func (x *SecurityPolicyDatabase_Interface) String() string

type SecurityPolicyDatabase_PolicyEntry 

type SecurityPolicyDatabase_PolicyEntry struct {
	SaIndex         uint32                                    `protobuf:"varint,1,opt,name=sa_index,json=saIndex,proto3" json:"sa_index,omitempty"` // Security association index
	Priority        int32                                     `protobuf:"varint,2,opt,name=priority,proto3" json:"priority,omitempty"`
	IsOutbound      bool                                      `protobuf:"varint,3,opt,name=is_outbound,json=isOutbound,proto3" json:"is_outbound,omitempty"`
	RemoteAddrStart string                                    `protobuf:"bytes,4,opt,name=remote_addr_start,json=remoteAddrStart,proto3" json:"remote_addr_start,omitempty"`
	RemoteAddrStop  string                                    `protobuf:"bytes,5,opt,name=remote_addr_stop,json=remoteAddrStop,proto3" json:"remote_addr_stop,omitempty"`
	LocalAddrStart  string                                    `protobuf:"bytes,6,opt,name=local_addr_start,json=localAddrStart,proto3" json:"local_addr_start,omitempty"`
	LocalAddrStop   string                                    `protobuf:"bytes,7,opt,name=local_addr_stop,json=localAddrStop,proto3" json:"local_addr_stop,omitempty"`
	Protocol        uint32                                    `protobuf:"varint,8,opt,name=protocol,proto3" json:"protocol,omitempty"`
	RemotePortStart uint32                                    `protobuf:"varint,9,opt,name=remote_port_start,json=remotePortStart,proto3" json:"remote_port_start,omitempty"`
	RemotePortStop  uint32                                    `protobuf:"varint,10,opt,name=remote_port_stop,json=remotePortStop,proto3" json:"remote_port_stop,omitempty"`
	LocalPortStart  uint32                                    `protobuf:"varint,11,opt,name=local_port_start,json=localPortStart,proto3" json:"local_port_start,omitempty"`
	LocalPortStop   uint32                                    `protobuf:"varint,12,opt,name=local_port_stop,json=localPortStop,proto3" json:"local_port_stop,omitempty"`
	Action          SecurityPolicyDatabase_PolicyEntry_Action `` /* 131-byte string literal not displayed */
	// contains filtered or unexported fields
}

func (*SecurityPolicyDatabase_PolicyEntry) Descriptor deprecated 

func (*SecurityPolicyDatabase_PolicyEntry) Descriptor() ([]byte, []int)

Deprecated: Use SecurityPolicyDatabase_PolicyEntry.ProtoReflect.Descriptor instead.

func (*SecurityPolicyDatabase_PolicyEntry) GetAction 

func (x *SecurityPolicyDatabase_PolicyEntry) GetAction() SecurityPolicyDatabase_PolicyEntry_Action

func (*SecurityPolicyDatabase_PolicyEntry) GetIsOutbound 

func (x *SecurityPolicyDatabase_PolicyEntry) GetIsOutbound() bool

func (*SecurityPolicyDatabase_PolicyEntry) GetLocalAddrStart 

func (x *SecurityPolicyDatabase_PolicyEntry) GetLocalAddrStart() string

func (*SecurityPolicyDatabase_PolicyEntry) GetLocalAddrStop 

func (x *SecurityPolicyDatabase_PolicyEntry) GetLocalAddrStop() string

func (*SecurityPolicyDatabase_PolicyEntry) GetLocalPortStart 

func (x *SecurityPolicyDatabase_PolicyEntry) GetLocalPortStart() uint32

func (*SecurityPolicyDatabase_PolicyEntry) GetLocalPortStop 

func (x *SecurityPolicyDatabase_PolicyEntry) GetLocalPortStop() uint32

func (*SecurityPolicyDatabase_PolicyEntry) GetPriority 

func (x *SecurityPolicyDatabase_PolicyEntry) GetPriority() int32

func (*SecurityPolicyDatabase_PolicyEntry) GetProtocol 

func (x *SecurityPolicyDatabase_PolicyEntry) GetProtocol() uint32

func (*SecurityPolicyDatabase_PolicyEntry) GetRemoteAddrStart 

func (x *SecurityPolicyDatabase_PolicyEntry) GetRemoteAddrStart() string

func (*SecurityPolicyDatabase_PolicyEntry) GetRemoteAddrStop 

func (x *SecurityPolicyDatabase_PolicyEntry) GetRemoteAddrStop() string

func (*SecurityPolicyDatabase_PolicyEntry) GetRemotePortStart 

func (x *SecurityPolicyDatabase_PolicyEntry) GetRemotePortStart() uint32

func (*SecurityPolicyDatabase_PolicyEntry) GetRemotePortStop 

func (x *SecurityPolicyDatabase_PolicyEntry) GetRemotePortStop() uint32

func (*SecurityPolicyDatabase_PolicyEntry) GetSaIndex 

func (x *SecurityPolicyDatabase_PolicyEntry) GetSaIndex() uint32

func (*SecurityPolicyDatabase_PolicyEntry) ProtoMessage 

func (*SecurityPolicyDatabase_PolicyEntry) ProtoMessage()

func (*SecurityPolicyDatabase_PolicyEntry) ProtoReflect added in v3.2.0 

func (x *SecurityPolicyDatabase_PolicyEntry) ProtoReflect() protoreflect.Message

func (*SecurityPolicyDatabase_PolicyEntry) Reset 

func (x *SecurityPolicyDatabase_PolicyEntry) Reset()

func (*SecurityPolicyDatabase_PolicyEntry) String 

func (x *SecurityPolicyDatabase_PolicyEntry) String() string

type SecurityPolicyDatabase_PolicyEntry_Action 

type SecurityPolicyDatabase_PolicyEntry_Action int32
const (
	SecurityPolicyDatabase_PolicyEntry_BYPASS  SecurityPolicyDatabase_PolicyEntry_Action = 0
	SecurityPolicyDatabase_PolicyEntry_DISCARD SecurityPolicyDatabase_PolicyEntry_Action = 1
	SecurityPolicyDatabase_PolicyEntry_RESOLVE SecurityPolicyDatabase_PolicyEntry_Action = 2 // Note: this particular action is unused in VPP
	SecurityPolicyDatabase_PolicyEntry_PROTECT SecurityPolicyDatabase_PolicyEntry_Action = 3
)

func (SecurityPolicyDatabase_PolicyEntry_Action) Descriptor added in v3.2.0 

func (SecurityPolicyDatabase_PolicyEntry_Action) Descriptor() protoreflect.EnumDescriptor

func (SecurityPolicyDatabase_PolicyEntry_Action) Enum added in v3.2.0 

func (x SecurityPolicyDatabase_PolicyEntry_Action) Enum() *SecurityPolicyDatabase_PolicyEntry_Action

func (SecurityPolicyDatabase_PolicyEntry_Action) EnumDescriptor deprecated 

func (SecurityPolicyDatabase_PolicyEntry_Action) EnumDescriptor() ([]byte, []int)

Deprecated: Use SecurityPolicyDatabase_PolicyEntry_Action.Descriptor instead.

func (SecurityPolicyDatabase_PolicyEntry_Action) Number added in v3.2.0 

func (x SecurityPolicyDatabase_PolicyEntry_Action) Number() protoreflect.EnumNumber

func (SecurityPolicyDatabase_PolicyEntry_Action) String 

func (x SecurityPolicyDatabase_PolicyEntry_Action) String() string

func (SecurityPolicyDatabase_PolicyEntry_Action) Type added in v3.2.0 

func (SecurityPolicyDatabase_PolicyEntry_Action) Type() protoreflect.EnumType

type SecurityPolicy_Action added in v3.2.0 

type SecurityPolicy_Action int32
const (
	SecurityPolicy_BYPASS  SecurityPolicy_Action = 0
	SecurityPolicy_DISCARD SecurityPolicy_Action = 1
	SecurityPolicy_RESOLVE SecurityPolicy_Action = 2 // Note: this particular action is unused in VPP
	SecurityPolicy_PROTECT SecurityPolicy_Action = 3
)

func (SecurityPolicy_Action) Descriptor added in v3.2.0 

func (SecurityPolicy_Action) Descriptor() protoreflect.EnumDescriptor

func (SecurityPolicy_Action) Enum added in v3.2.0 

func (x SecurityPolicy_Action) Enum() *SecurityPolicy_Action

func (SecurityPolicy_Action) EnumDescriptor deprecated added in v3.2.0 

func (SecurityPolicy_Action) EnumDescriptor() ([]byte, []int)

Deprecated: Use SecurityPolicy_Action.Descriptor instead.

func (SecurityPolicy_Action) Number added in v3.2.0 

func (x SecurityPolicy_Action) Number() protoreflect.EnumNumber

func (SecurityPolicy_Action) String added in v3.2.0 

func (x SecurityPolicy_Action) String() string

func (SecurityPolicy_Action) Type added in v3.2.0 

func (SecurityPolicy_Action) Type() protoreflect.EnumType

type TunnelProtection added in v3.1.0 

type TunnelProtection struct {

	// Name of the interface to be protected with IPSec.
	Interface string `protobuf:"bytes,1,opt,name=interface,proto3" json:"interface,omitempty"`
	// Outbound security associations identified by SA index.
	SaOut []uint32 `protobuf:"varint,2,rep,packed,name=sa_out,json=saOut,proto3" json:"sa_out,omitempty"`
	// Inbound security associations identified by SA index.
	SaIn []uint32 `protobuf:"varint,3,rep,packed,name=sa_in,json=saIn,proto3" json:"sa_in,omitempty"`
	// (Optional) Next hop IP address, used for multipoint tunnels.
	NextHopAddr string `protobuf:"bytes,4,opt,name=next_hop_addr,json=nextHopAddr,proto3" json:"next_hop_addr,omitempty"`
	// contains filtered or unexported fields
}

TunnelProtection allows enabling IPSec tunnel protection on an existing interface (only IPIP tunnel interfaces are currently supported)

func (*TunnelProtection) Descriptor deprecated added in v3.1.0 

func (*TunnelProtection) Descriptor() ([]byte, []int)

Deprecated: Use TunnelProtection.ProtoReflect.Descriptor instead.

func (*TunnelProtection) GetInterface added in v3.1.0 

func (x *TunnelProtection) GetInterface() string

func (*TunnelProtection) GetNextHopAddr added in v3.2.0 

func (x *TunnelProtection) GetNextHopAddr() string

func (*TunnelProtection) GetSaIn added in v3.1.0 

func (x *TunnelProtection) GetSaIn() []uint32

func (*TunnelProtection) GetSaOut added in v3.1.0 

func (x *TunnelProtection) GetSaOut() []uint32

func (*TunnelProtection) ProtoMessage added in v3.1.0 

func (*TunnelProtection) ProtoMessage()

func (*TunnelProtection) ProtoReflect added in v3.2.0 

func (x *TunnelProtection) ProtoReflect() protoreflect.Message

func (*TunnelProtection) Reset added in v3.1.0 

func (x *TunnelProtection) Reset()

func (*TunnelProtection) String added in v3.1.0 

func (x *TunnelProtection) String() string

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.