rules

package

v0.18.1 Latest Latest Go to latest Published: Oct 10, 2017 License: Apache-2.0 Imports: 7 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/cloudfoundry/cf-networking-release

Links

Open Source Insights

Documentation ¶

Index ¶

type IPTablesAdapter
type IPTablesLocker
- func (l *IPTablesLocker) Lock() error
- func (l *IPTablesLocker) Unlock() error
type IPTablesRule
type LockedIPTables
type Restorer
- func (r *Restorer) Restore(input string) error

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type IPTablesAdapter ¶ added in v0.7.0

type IPTablesAdapter interface {
	Exists(table, chain string, rulespec IPTablesRule) (bool, error)
	Delete(table, chain string, rulespec IPTablesRule) error
	List(table, chain string) ([]string, error)
	NewChain(table, chain string) error
	ClearChain(table, chain string) error
	DeleteChain(table, chain string) error
	BulkInsert(table, chain string, pos int, rulespec ...IPTablesRule) error
	BulkAppend(table, chain string, rulespec ...IPTablesRule) error
}

type IPTablesLocker ¶ added in v0.7.0

type IPTablesLocker struct {
	FileLocker filelock.FileLocker

	Mutex *sync.Mutex
	// contains filtered or unexported fields
}

func (*IPTablesLocker) Lock ¶ added in v0.7.0

func (l *IPTablesLocker) Lock() error

TODO improve test coverage / add a close function to filelocker

func (*IPTablesLocker) Unlock ¶ added in v0.7.0

func (l *IPTablesLocker) Unlock() error

type IPTablesRule ¶ added in v0.7.0

type IPTablesRule []string

func AppendComment ¶ added in v0.7.0

func AppendComment(rule IPTablesRule, comment string) IPTablesRule

func NewAcceptExistingLocalRule ¶

func NewAcceptExistingLocalRule() IPTablesRule

func NewAcceptExistingRemoteRule ¶

func NewAcceptExistingRemoteRule(vni int) IPTablesRule

func NewDefaultDenyLocalRule ¶

func NewDefaultDenyLocalRule(localSubnet string) IPTablesRule

func NewDefaultDenyRemoteRule ¶

func NewDefaultDenyRemoteRule(vni int) IPTablesRule

func NewDefaultEgressRule ¶

func NewDefaultEgressRule(localSubnet, overlayNetwork string) IPTablesRule

func NewInputDefaultRejectRule ¶ added in v0.10.0

func NewInputDefaultRejectRule(subnet string) IPTablesRule

func NewInputRelatedEstablishedRule ¶ added in v0.10.0

func NewInputRelatedEstablishedRule(subnet string) IPTablesRule

func NewLogLocalRejectRule ¶ added in v0.10.0

func NewLogLocalRejectRule(localSubnet string) IPTablesRule

func NewLogRemoteRejectRule ¶ added in v0.10.0

func NewLogRemoteRejectRule(vni int) IPTablesRule

func NewLogRule ¶

func NewLogRule(rule IPTablesRule, name string) IPTablesRule

func NewMarkAllowRule ¶

func NewMarkAllowRule(destinationIP, protocol string, port int, tag string, sourceAppGUID, destinationAppGUID string) IPTablesRule

func NewMarkLogRule ¶ added in v0.11.0

func NewMarkLogRule(destinationIP, protocol string, port int, tag string, destinationAppGUID string) IPTablesRule

func NewMarkSetRule ¶

func NewMarkSetRule(sourceIP, tag, appGUID string) IPTablesRule

func NewNetOutDefaultLogRule ¶ added in v0.7.0

func NewNetOutDefaultLogRule(prefix string) IPTablesRule

func NewNetOutDefaultRejectRule ¶

func NewNetOutDefaultRejectRule(subnet, overlayNetwork string) IPTablesRule

func NewNetOutLogRule ¶ added in v0.7.0

func NewNetOutLogRule(containerIP, startIP, endIP, chain string) IPTablesRule

func NewNetOutRelatedEstablishedRule ¶

func NewNetOutRelatedEstablishedRule(subnet, overlayNetwork string) IPTablesRule

func NewNetOutRule ¶

func NewNetOutRule(containerIP, startIP, endIP string) IPTablesRule

func NewNetOutWithPortsLogRule ¶ added in v0.7.0

func NewNetOutWithPortsLogRule(containerIP, startIP, endIP string, startPort, endPort int, protocol, chain string) IPTablesRule

func NewNetOutWithPortsRule ¶

func NewNetOutWithPortsRule(containerIP, startIP, endIP string, startPort, endPort int, protocol string) IPTablesRule

func NewReturnRule ¶ added in v0.7.0

func NewReturnRule() IPTablesRule

type LockedIPTables ¶ added in v0.7.0

type LockedIPTables struct {
	IPTables iptables
	Locker   locker
	Restorer restorer
}

func (*LockedIPTables) BulkAppend ¶ added in v0.7.0

func (l *LockedIPTables) BulkAppend(table, chain string, rulespec ...IPTablesRule) error

func (*LockedIPTables) BulkInsert ¶ added in v0.7.0

func (l *LockedIPTables) BulkInsert(table, chain string, pos int, rulespec ...IPTablesRule) error

func (*LockedIPTables) ClearChain ¶ added in v0.7.0

func (l *LockedIPTables) ClearChain(table, chain string) error

func (*LockedIPTables) Delete ¶ added in v0.7.0

func (l *LockedIPTables) Delete(table, chain string, rulespec IPTablesRule) error

func (*LockedIPTables) DeleteChain ¶ added in v0.7.0

func (l *LockedIPTables) DeleteChain(table, chain string) error

func (*LockedIPTables) Exists ¶ added in v0.7.0

func (l *LockedIPTables) Exists(table, chain string, rulespec IPTablesRule) (bool, error)

func (*LockedIPTables) List ¶ added in v0.7.0

func (l *LockedIPTables) List(table, chain string) ([]string, error)

func (*LockedIPTables) NewChain ¶ added in v0.7.0

func (l *LockedIPTables) NewChain(table, chain string) error

type Restorer ¶ added in v0.7.0

type Restorer struct{}

func (*Restorer) Restore ¶ added in v0.7.0

func (r *Restorer) Restore(input string) error

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL