istio: istio.io/istio/tools/istio-iptables/pkg/constants Index | Files

package constants

import "istio.io/istio/tools/istio-iptables/pkg/constants"

Index

Package Files

constants.go

Constants 

const (
    MANGLE = "mangle"
    NAT    = "nat"
    FILTER = "filter"
)

iptables tables 

const (
    INPUT       = "INPUT"
    OUTPUT      = "OUTPUT"
    FORWARD     = "FORWARD"
    PREROUTING  = "PREROUTING"
    POSTROUTING = "POSTROUTING"
)

Built-in iptables chains 

const (
    TCP = "tcp"
    UDP = "udp"

    TPROXY   = "TPROXY"
    RETURN   = "RETURN"
    ACCEPT   = "ACCEPT"
    REJECT   = "REJECT"
    REDIRECT = "REDIRECT"
    MARK     = "MARK"
)

Constants used for generating iptables commands 

const (
    ISTIOOUTPUT     = "ISTIO_OUTPUT"
    ISTIOINBOUND    = "ISTIO_INBOUND"
    ISTIODIVERT     = "ISTIO_DIVERT"
    ISTIOTPROXY     = "ISTIO_TPROXY"
    ISTIOREDIRECT   = "ISTIO_REDIRECT"
    ISTIOINREDIRECT = "ISTIO_IN_REDIRECT"
)

iptables chains 

const (
    InboundInterceptionMode   = "istio-inbound-interception-mode"
    InboundTProxyMark         = "istio-inbound-tproxy-mark"
    InboundTProxyRouteTable   = "istio-inbound-tproxy-route-table"
    InboundPorts              = "istio-inbound-ports"
    LocalExcludePorts         = "istio-local-exclude-ports"
    ServiceCidr               = "istio-service-cidr"
    ServiceExcludeCidr        = "istio-service-exclude-cidr"
    OutboundPorts             = "istio-outbound-ports"
    LocalOutboundPortsExclude = "istio-local-outbound-ports-exclude"
    EnvoyPort                 = "envoy-port"
    InboundCapturePort        = "inbound-capture-port"
    InboundTunnelPort         = "inbound-tunnel-port"
    ProxyUID                  = "proxy-uid"
    ProxyGID                  = "proxy-gid"
    KubeVirtInterfaces        = "kube-virt-interfaces"
    DryRun                    = "dry-run"
    Clean                     = "clean"
    RestoreFormat             = "restore-format"
    SkipRuleApply             = "skip-rule-apply"
    RunValidation             = "run-validation"
    IptablesProbePort         = "iptables-probe-port"
    ProbeTimeout              = "probe-timeout"
    RedirectDNS               = "redirect-dns"
)

Constants used in cobra/viper CLI 

const (
    DisableRedirectionOnLocalLoopback = "DISABLE_REDIRECTION_ON_LOCAL_LOOPBACK"
    EnvoyUser                         = "ENVOY_USER"
)

Constants used in environment variables 

const (
    IPTABLES         = "iptables"
    IPTABLESRESTORE  = "iptables-restore"
    IPTABLESSAVE     = "iptables-save"
    IP6TABLES        = "ip6tables"
    IP6TABLESRESTORE = "ip6tables-restore"
    IP6TABLESSAVE    = "ip6tables-save"
    IP               = "ip"
)

Constants for iptables commands 

const (
    DefaultIptablesProbePort = 15002
    DefaultProbeTimeout      = 5 * time.Second
)
const (
    ValidationContainerName = "istio-validation"
    ValidationErrorCode     = 126
)
const (
    DefaultProxyUID = "1337"
)
const (
    IstioAgentDNSListenerPort = "15053"
)

DNS ports 

const (
    // sys/socket.h
    SoOriginalDst = 80
)

Constants for syscall

Variables 

var BuiltInChainsMap = map[string]struct{}{
    INPUT:       {},
    OUTPUT:      {},
    FORWARD:     {},
    PREROUTING:  {},
    POSTROUTING: {},
}

Package constants imports 1 packages (graph) and is imported by 8 packages. Updated 2021-01-09. Refresh now. Tools for package owners.