Commit Graph

220 Commits

Author SHA1 Message Date
Serguei Bezverkhi 5d14089d2e Adding to nat expression additional parameters (#59)
* Change in dnat logic to cover all combinations

Signed-off-by: Serguei Bezverkhi <sbezverk@cisco.com>

* Add parameter to cover all possible nat combinations

Signed-off-by: Serguei Bezverkhi <sbezverk@cisco.com>
2019-09-06 08:28:27 +02:00
Serguei Bezverkhi a0a4b3333d Get sets fix (#58)
* lookup dest reg check fix

Signed-off-by: Serguei Bezverkhi <sbezverk@cisco.com>

* Fix GetSets to detect Verdict Data type

Signed-off-by: Serguei Bezverkhi <sbezverk@cisco.com>
2019-08-31 09:36:43 +02:00
Serguei Bezverkhi 4b2264477a lookup dest reg check fix (#57)
Signed-off-by: Serguei Bezverkhi <sbezverk@cisco.com>
2019-08-31 09:36:20 +02:00
Serguei Bezverkhi 2d823533fe Add Vmap support (#56) 2019-08-28 08:51:13 +02:00
Serguei Bezverkhi 1ad7112fd7 Add support for maps (#55) 2019-08-27 17:52:20 +02:00
Serguei Bezverkhi 85a78b5285 Adding Fib expression and unit tests (#54) 2019-08-27 08:49:06 +02:00
Serguei Bezverkhi d514535a0c Reject expression and Unit tests (#53) 2019-08-26 09:57:52 +02:00
Serguei Bezverkhi ec0390b058 Extend Masq support and add unit testing (#52) 2019-08-25 23:43:47 +02:00
Serguei Bezverkhi 6925991d82 Meta SREG and DREG (#51)
* meta requires to use source and destination registers

Signed-off-by: Serguei Bezverkhi <sbezverk@cisco.com>
2019-08-19 23:36:36 +02:00
Serguei Bezverkhi 5cb71bfba1 rule replace (#50)
Signed-off-by: Serguei Bezverkhi <sbezverk@cisco.com>
2019-08-19 23:35:24 +02:00
Serguei Bezverkhi 0b3d8b56f6 Implementation of UserData struct encode/decode (#49) 2019-08-15 08:25:30 +02:00
Serguei Bezverkhi 579fe47a77 Refactor decoding set elements (#47) 2019-08-13 22:19:49 +02:00
Serguei Bezverkhi 1435f3a62c Fix non populated Table Family field (#45)
Signed-off-by: Serguei Bezverkhi <sbezverk@cisco.com>
2019-08-12 08:51:06 +02:00
Serguei Bezverkhi 2f48b7d8d8 Additional change to Element to support set intervals (#44) 2019-08-09 19:36:23 +02:00
Serguei Bezverkhi 26de8f0eaa add interval flag support to set (#43)
Signed-off-by: Serguei Bezverkhi <sbezverk@cisco.com>
2019-08-08 07:45:20 +02:00
Serguei Bezverkhi 9907ca3831 Add log expression and test (#42)
Signed-off-by: Serguei Bezverkhi <sbezverk@cisco.com>
2019-08-01 12:41:37 -07:00
Serguei Bezverkhi 72bd788b11 Fixes #39 (#40)
Signed-off-by: Serguei Bezverkhi <sbezverk@cisco.com>
2019-07-23 05:12:57 +02:00
Michael Stapelberg c123f7dc7d nftables_test: add test for issue #26 2019-07-20 18:35:32 +02:00
Michael Stapelberg 37c3f0e9eb set: desc size carries len(vals), not KeyType.Bytes
fixes #26
2019-07-20 18:35:32 +02:00
Michael Stapelberg 0b03b9847f chain: add policy attribute 2019-07-20 18:35:32 +02:00
Serguei Bezverkhi 7895e345f5 Add Connection tracking expression and test (#38)
Signed-off-by: Serguei Bezverkhi <sbezverk@cisco.com>
2019-07-20 13:20:42 +02:00
Serguei Bezverkhi 635111f591 Adding DelRule and unit tests (#36)
Signed-off-by: Serguei Bezverkhi <sbezverk@cisco.com>
2019-07-14 14:49:03 +02:00
Serguei Bezverkhi d6b2000800 Add func to Delete a chain (#35) 2019-07-11 14:30:38 +02:00
Serguei Bezverkhi b62e86457d Change logic of searching for rule's ID (#34)
Signed-off-by: Serguei Bezverkhi <sbezverk@cisco.com>
2019-07-08 22:46:23 +02:00
Serguei Bezverkhi 7c0b8e78d4 Add support for rule's handle, position and id (#33) 2019-07-08 18:01:35 +02:00
Serguei Bezverkhi 7a68526274 tproxy expression support and test (#32)
Add support for tproxy expression

Signed-off-by: Serguei Bezverkhi <sbezverk@cisco.com>
2019-06-30 01:06:32 +02:00
Serguei Bezverkhi d22d8d0641 Adding unit test for chain add (#29)
Signed-off-by: Serguei Bezverkhi <sbezverk@cisco.com>
2019-06-26 16:53:43 +02:00
Serguei Bezverkhi 76dc827b18 Add logic for regular chains (#28)
* Add logic for regular chains

Signed-off-by: Serguei Bezverkhi <sbezverk@cisco.com>
2019-06-24 18:00:28 +02:00
jniewt 900c47abbb List chains (#25) 2019-06-19 13:14:23 +02:00
Serguei Bezverkhi 8d26daf060 Implement range expression (#22)
Signed-off-by: Serguei Bezverkhi <sbezverk@cisco.com>

fixes #19
2019-06-05 13:15:05 +02:00
Michael Stapelberg 8cccfeed7c add return verdict test
fixes #18
2019-05-24 03:00:57 +02:00
Michael Stapelberg 70f367a546 verdict: add Chain (+test)
related to #18
2019-05-24 02:56:43 +02:00
Michael Stapelberg d3930927e4 declare a Go module 2019-05-24 02:21:35 +02:00
Michael Stapelberg c5bb71b2cf implement redir expression (+test)
fixes #17
2019-05-17 13:57:31 +02:00
Ryan Whelan b0a2c473e0 List tables (#16)
list tables function
2019-05-13 14:13:23 +02:00
Ryan Whelan 7bac3e3135 Restructure code base into smaller files (#15)
* Restrcture code base into smaller files

* Package level doc string

* Move ExprsFromMsg back from expr sub-module

* gofmt
2019-05-03 23:54:09 +02:00
Ryan Whelan 07c974e364 fix: Typo in unmarshal on Cmp struct (#14) 2019-04-30 17:07:43 +02:00
Matt Layher a975e10ef9 nftables: update for package netlink constant renames (#13) 2019-03-02 17:04:15 +01:00
Tom D b8b6574812 Implement GetRule for Immediate, Verdict, and Lookup expressions (#11) 2019-02-18 13:01:32 +01:00
Tom D ca263a814b Add support for inverted set lookups. (#10) 2019-02-13 10:06:43 +01:00
Michael Stapelberg 51ca8da884
Merge pull request #9 from twitchy-jsonp/master
Implement support for nftable sets.
2019-02-12 08:18:11 +01:00
Tom 2bb2b66f95 Implement support for anonymous & named sets. 2019-02-11 16:11:27 -08:00
Tom c76172e9b6 Merge branch 'master' of github.com:twitchy-jsonp/nftables 2019-01-28 20:53:56 -08:00
Dhiver b732c419a3 Implement Queue Expr (#8) 2019-01-28 18:01:13 +01:00
Tom D 7612760462 Implement verdict expression. (#7) 2019-01-17 09:48:46 +01:00
Tom 3a9b1b0cab Implement verdict expression. 2019-01-16 16:23:05 -08:00
Tom D 2610769f25 Implement DelTable (#6) 2019-01-06 23:08:33 +01:00
Michael Stapelberg fedef31bd8 nftables_test: add ConfigureNATSourceAddress for illustration
related to #5
2019-01-04 08:46:40 +01:00
Michael Stapelberg 9ac63cb282 add exprs and test for TCP MSS clamping 2018-10-22 09:22:02 +02:00
Florian Lehner efc2089755 res_id is big endian (#3)
Signed-off-by: Lehner Florian <dev@der-flo.net>
2018-10-05 17:58:05 +02:00