aclplugin

package

v1.0.5 Latest Latest Go to latest Published: Sep 26, 2017 License: Apache-2.0 Imports: 9 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/fgschwan/vpp-agent

Links

Open Source Insights

README ¶

DISCLAIMER: work in progress, this plugin needs a lot of cleanup

Support for VPP ACL on Network Interfaces. This plugin uses ETCD configuration (see sub folder model/acl) and translates it to the VPP ACL Binary API Calls.

Documentation ¶

Overview ¶

Package aclplugin implements the ACL Plugin that handles management of VPP Access lists.

Index ¶

type ACLConfigurator

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type ACLConfigurator ¶

type ACLConfigurator struct {
	GoVppmux       govppmux.API
	ACLL3L4Indexes idxvpp.NameToIdxRW
	ACLL2Indexes   idxvpp.NameToIdxRW // mapping for L2 ACLs
	SwIfIndexes    ifaceidx.SwIfIndex
	// contains filtered or unexported fields
}

ACLConfigurator runs in the background in its own goroutine where it watches for any changes in the configuration of ACLs as modelled by the proto file "../model/acl/acl.proto" and stored in ETCD under the key "/vnf-agent/{agent-label}/vpp/config/v1/acl/". Updates received from the northbound API are compared with the VPP run-time configuration and differences are applied through the VPP binary API.

func (*ACLConfigurator) Close ¶

func (plugin *ACLConfigurator) Close()

Close GOVPP channel

func (*ACLConfigurator) ConfigureACL ¶

func (plugin *ACLConfigurator) ConfigureACL(acl *acl.AccessLists_Acl) error

ConfigureACL creates access list with provided rules and sets this list to every relevant interface

func (*ACLConfigurator) DeleteACL ¶

func (plugin *ACLConfigurator) DeleteACL(acl *acl.AccessLists_Acl) error

DeleteACL removes existing ACL. To detach ACL from interfaces, list of interfaces has to be provided

func (*ACLConfigurator) Init ¶

func (plugin *ACLConfigurator) Init() (err error)

Init goroutines, channels and mappings

func (*ACLConfigurator) ModifyACL ¶

func (plugin *ACLConfigurator) ModifyACL(oldACL *acl.AccessLists_Acl, newACL *acl.AccessLists_Acl) error

ModifyACL modifies previously created access list. L2 access list is removed and recreated, L3/L4 access list is modified directly. List of interfaces is refreshed as well

func (*ACLConfigurator) Resync ¶

func (plugin *ACLConfigurator) Resync(acls []*acl.AccessLists_Acl) error

Resync writes ACLs to the empty VPP

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
bin_api Package binapi defines the aclplugin's southbound API.	Package binapi defines the aclplugin's southbound API.
acl Code generated by govpp binapi-generator DO NOT EDIT.	Code generated by govpp binapi-generator DO NOT EDIT.
model Package model defines the acplugin's northbound API.	Package model defines the acplugin's northbound API.
acl Package acl is a generated protocol buffer package.	Package acl is a generated protocol buffer package.
vppcalls Package vppcalls contains wrappers over VPP ACL binary APIs.	Package vppcalls contains wrappers over VPP ACL binary APIs.

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL