redirecttraffic

package

v0.8.0 Latest Latest Go to latest Published: Feb 29, 2024 License: MPL-2.0 Imports: 7 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/hashicorp/consul-ecs

Links

Open Source Insights

Documentation ¶

Index ¶

type TrafficRedirectionCfg
- func (c *TrafficRedirectionCfg) Apply() error
- func (c *TrafficRedirectionCfg) Config() iptables.Config
type TrafficRedirectionOpts
- func WithIPTablesProvider(provider iptables.Provider) TrafficRedirectionOpts
type TrafficRedirectionProvider
- func New(cfg *config.Config, proxySvc *api.AgentService, ...) TrafficRedirectionProvider

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type TrafficRedirectionCfg ¶

type TrafficRedirectionCfg struct {
	ProxySvc *api.AgentService

	EnableConsulDNS      bool
	ExcludeInboundPorts  []int
	ExcludeOutboundPorts []int
	ExcludeOutboundCIDRs []string
	ExcludeUIDs          []string
	// contains filtered or unexported fields
}

func (*TrafficRedirectionCfg) Apply ¶

func (c *TrafficRedirectionCfg) Apply() error

applyTrafficRedirectionRules creates and applies traffic redirection rules with the help of iptables

iptables.Config:

ConsulDNSIP: Consul Dataplane's DNS server (i.e. localhost)
ConsulDNSPort: Consul Dataplane's DNS server's bind port
ProxyUserID: a constant set by default in the mesh-task module for the Consul dataplane's container
ProxyInboundPort: the proxy service's port or bind port
ProxyOutboundPort: default transparent proxy outbound port
ExcludeInboundPorts: prometheus, envoy stats, expose paths and `transparentProxy.excludeInboundPorts`
ExcludeOutboundPorts: `transparentProxy.excludeOutboundPorts` in CONSUL_ECS_CONFIG_JSON
ExcludeOutboundCIDRs: `transparentProxy.excludeOutboundCIDRs` in CONSUL_ECS_CONFIG_JSON
ExcludeUIDs: `transparentProxy.excludeUIDs` in CONSUL_ECS_CONFIG_JSON

func (*TrafficRedirectionCfg) Config ¶

func (c *TrafficRedirectionCfg) Config() iptables.Config

type TrafficRedirectionOpts ¶

type TrafficRedirectionOpts func(*TrafficRedirectionCfg)

func WithIPTablesProvider ¶

func WithIPTablesProvider(provider iptables.Provider) TrafficRedirectionOpts

type TrafficRedirectionProvider ¶

type TrafficRedirectionProvider interface {
	// Apply applies the traffic redirection with iptables
	Apply() error

	// Config returns the resultant iptables config that gets
	// applied by the provider
	Config() iptables.Config
}

func New ¶

func New(cfg *config.Config, proxySvc *api.AgentService, additionalInboundPortsToExclude []int, opts ...TrafficRedirectionOpts) TrafficRedirectionProvider

Source Files ¶

View all Source files

redirect_traffic.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL