nftables

package
v0.0.0-...-49ff46f Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Dec 4, 2024 License: Apache-2.0 Imports: 7 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func DeleteProxyChain 

func DeleteProxyChain() error

func EnsureKernelModules 

func EnsureKernelModules() error

EnsureKernelModules ensures that nft_tproxy kernel module is loaded.

func InsertProxyChain 

func InsertProxyChain(destPorts []uint16, redirectPort uint16, iface string) error

InsertProxyChain create a new nftables table with a single chain with a tproxy rule in it.

We create a new chain with a custom priority to ensure that we can cleanly add and remove it without affecting other rules or knowing the setup.

Generates a chain that looks like this: 

table ip filter {
  chain tpuproxy {
    type filter hook prerouting priority -2147483648; policy accept;
    iifname "enp6s0" udp dport { 8003, 8004, 8005 } tproxy to :51211
  }
}

Types

This section is empty.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.
JackTT - Gopher 🇻🇳