nftables

package

v0.0.0-...-3423c7d Latest Latest Go to latest Published: Mar 4, 2023 License: Apache-2.0 Imports: 7 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/jumpsiegel/radiance

Documentation ¶

Index ¶

func DeleteProxyChain() error
func EnsureKernelModules() error
func InsertProxyChain(destPorts []uint16, redirectPort uint16, iface string) error

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func DeleteProxyChain ¶

func DeleteProxyChain() error

func EnsureKernelModules ¶

func EnsureKernelModules() error

EnsureKernelModules ensures that nft_tproxy kernel module is loaded.

func InsertProxyChain ¶

func InsertProxyChain(destPorts []uint16, redirectPort uint16, iface string) error

InsertProxyChain create a new nftables table with a single chain with a tproxy rule in it.

We create a new chain with a custom priority to ensure that we can cleanly add and remove it without affecting other rules or knowing the setup.

Generates a chain that looks like this:

table ip filter {
  chain tpuproxy {
    type filter hook prerouting priority -2147483648; policy accept;
    iifname "enp6s0" udp dport { 8003, 8004, 8005 } tproxy to :51211
  }
}

Types ¶

This section is empty.

Source Files ¶

View all Source files

nftables.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL