d4/d38/det44__cli_8c_source.html

 /*
  * Copyright (c) 2020 Cisco and/or its affiliates.
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
  * You may obtain a copy of the License at:
  *
  *     http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
 /**
  * @file
  * @brief DET44 CLI
  */
 #include <nat/det44/det44.h>

 static clib_error_t *
 det44_map_command_fn (vlib_main_t * vm, unformat_input_t * input,
                       vlib_cli_command_t * cmd)
 {
   unformat_input_t _line_input, *line_input = &_line_input;
   ip4_address_t in_addr, out_addr;
   u32 in_plen, out_plen;
   int is_add = 1, rv;
   clib_error_t *error = 0;

   if (!unformat_user (input, unformat_line_input, line_input))
     return 0;

   while (unformat_check_input (line_input) != UNFORMAT_END_OF_INPUT)
     {
       if (unformat
           (line_input, "in %U/%u", unformat_ip4_address, &in_addr, &in_plen))
         ;
       else
         if (unformat
             (line_input, "out %U/%u", unformat_ip4_address, &out_addr,
              &out_plen))
         ;
       else if (unformat (line_input, "del"))
         is_add = 0;
       else
         {
           error = clib_error_return (0, "unknown input '%U'",
                                      format_unformat_error, line_input);
           goto done;
         }
     }

   rv = snat_det_add_map (&in_addr, (u8) in_plen, &out_addr, (u8) out_plen,
                          is_add);

   if (rv)
     {
       error = clib_error_return (0, "snat_det_add_map return %d", rv);
       goto done;
     }

 done:
   unformat_free (line_input);

   return error;
 }

 static clib_error_t *
 det44_show_mappings_command_fn (vlib_main_t * vm,
                                 unformat_input_t * input,
                                 vlib_cli_command_t * cmd)
 {
   det44_main_t *dm = &det44_main;
   snat_det_map_t *mp;
   vlib_cli_output (vm, "NAT44 deterministic mappings:");
   /* *INDENT-OFF* */
   pool_foreach (mp, dm->det_maps)
    {
     vlib_cli_output (vm, " in %U/%d out %U/%d\n",
                      format_ip4_address, &mp->in_addr, mp->in_plen,
                      format_ip4_address, &mp->out_addr, mp->out_plen);
     vlib_cli_output (vm, "  outside address sharing ratio: %d\n",
                      mp->sharing_ratio);
     vlib_cli_output (vm, "  number of ports per inside host: %d\n",
                      mp->ports_per_host);
     vlib_cli_output (vm, "  sessions number: %d\n", mp->ses_num);
   }
   /* *INDENT-ON* */
   return 0;
 }

 static clib_error_t *
 det44_forward_command_fn (vlib_main_t * vm,
                           unformat_input_t * input, vlib_cli_command_t * cmd)
 {
   unformat_input_t _line_input, *line_input = &_line_input;
   ip4_address_t in_addr, out_addr;
   u16 lo_port;
   snat_det_map_t *mp;
   clib_error_t *error = 0;

   if (!unformat_user (input, unformat_line_input, line_input))
     return 0;

   while (unformat_check_input (line_input) != UNFORMAT_END_OF_INPUT)
     {
       if (unformat (line_input, "%U", unformat_ip4_address, &in_addr))
         ;
       else
         {
           error = clib_error_return (0, "unknown input '%U'",
                                      format_unformat_error, line_input);
           goto done;
         }
     }

   mp = snat_det_map_by_user (&in_addr);
   if (!mp)
     vlib_cli_output (vm, "no match");
   else
     {
       snat_det_forward (mp, &in_addr, &out_addr, &lo_port);
       vlib_cli_output (vm, "%U:<%d-%d>", format_ip4_address, &out_addr,
                        lo_port, lo_port + mp->ports_per_host - 1);
     }

 done:
   unformat_free (line_input);

   return error;
 }

 static clib_error_t *
 det44_reverse_command_fn (vlib_main_t * vm,
                           unformat_input_t * input, vlib_cli_command_t * cmd)
 {
   unformat_input_t _line_input, *line_input = &_line_input;
   ip4_address_t in_addr, out_addr;
   clib_error_t *error = 0;
   snat_det_map_t *mp;
   u32 out_port;

   if (!unformat_user (input, unformat_line_input, line_input))
     return 0;

   while (unformat_check_input (line_input) != UNFORMAT_END_OF_INPUT)
     {
       if (unformat
           (line_input, "%U:%d", unformat_ip4_address, &out_addr, &out_port))
         ;
       else
         {
           error = clib_error_return (0, "unknown input '%U'",
                                      format_unformat_error, line_input);
           goto done;
         }
     }

   if (out_port < 1024 || out_port > 65535)
     {
       error = clib_error_return (0, "wrong port, must be <1024-65535>");
       goto done;
     }

   mp = snat_det_map_by_out (&out_addr);
   if (!mp)
     vlib_cli_output (vm, "no match");
   else
     {
       snat_det_reverse (mp, &out_addr, (u16) out_port, &in_addr);
       vlib_cli_output (vm, "%U", format_ip4_address, &in_addr);
     }

 done:
   unformat_free (line_input);

   return error;
 }

 static clib_error_t *
 det44_show_sessions_command_fn (vlib_main_t * vm,
                                 unformat_input_t * input,
                                 vlib_cli_command_t * cmd)
 {
   det44_main_t *dm = &det44_main;
   snat_det_session_t *ses;
   snat_det_map_t *mp;
   vlib_cli_output (vm, "NAT44 deterministic sessions:");
   /* *INDENT-OFF* */
   pool_foreach (mp, dm->det_maps)
    {
     int i;
     vec_foreach_index (i, mp->sessions)
       {
         ses = vec_elt_at_index (mp->sessions, i);
         if (ses->in_port)
           vlib_cli_output (vm, "  %U", format_det_map_ses, mp, ses, &i);
       }
   }
   /* *INDENT-ON* */
   return 0;
 }

 static clib_error_t *
 det44_close_session_out_fn (vlib_main_t * vm,
                             unformat_input_t * input,
                             vlib_cli_command_t * cmd)
 {
   unformat_input_t _line_input, *line_input = &_line_input;
   ip4_address_t out_addr, ext_addr, in_addr;
   u32 out_port, ext_port;
   snat_det_map_t *mp;
   snat_det_session_t *ses;
   snat_det_out_key_t key;
   clib_error_t *error = 0;

   if (!unformat_user (input, unformat_line_input, line_input))
     return 0;

   while (unformat_check_input (line_input) != UNFORMAT_END_OF_INPUT)
     {
       if (unformat (line_input, "%U:%d %U:%d",
                     unformat_ip4_address, &out_addr, &out_port,
                     unformat_ip4_address, &ext_addr, &ext_port))
         ;
       else
         {
           error = clib_error_return (0, "unknown input '%U'",
                                      format_unformat_error, line_input);
           goto done;
         }
     }

   unformat_free (line_input);

   mp = snat_det_map_by_out (&out_addr);
   if (!mp)
     vlib_cli_output (vm, "no match");
   else
     {
       snat_det_reverse (mp, &ext_addr, (u16) out_port, &in_addr);
       key.ext_host_addr = out_addr;
       key.ext_host_port = ntohs ((u16) ext_port);
       key.out_port = ntohs ((u16) out_port);
       ses = snat_det_get_ses_by_out (mp, &out_addr, key.as_u64);
       if (!ses)
         vlib_cli_output (vm, "no match");
       else
         snat_det_ses_close (mp, ses);
     }

 done:
   unformat_free (line_input);

   return error;
 }

 static clib_error_t *
 det44_close_session_in_fn (vlib_main_t * vm,
                            unformat_input_t * input, vlib_cli_command_t * cmd)
 {
   unformat_input_t _line_input, *line_input = &_line_input;
   ip4_address_t in_addr, ext_addr;
   u32 in_port, ext_port;
   snat_det_map_t *mp;
   snat_det_session_t *ses;
   snat_det_out_key_t key;
   clib_error_t *error = 0;

   if (!unformat_user (input, unformat_line_input, line_input))
     return 0;

   while (unformat_check_input (line_input) != UNFORMAT_END_OF_INPUT)
     {
       if (unformat (line_input, "%U:%d %U:%d",
                     unformat_ip4_address, &in_addr, &in_port,
                     unformat_ip4_address, &ext_addr, &ext_port))
         ;
       else
         {
           error = clib_error_return (0, "unknown input '%U'",
                                      format_unformat_error, line_input);
           goto done;
         }
     }

   unformat_free (line_input);

   mp = snat_det_map_by_user (&in_addr);
   if (!mp)
     vlib_cli_output (vm, "no match");
   else
     {
       key.ext_host_addr = ext_addr;
       key.ext_host_port = ntohs ((u16) ext_port);
       ses =
         snat_det_find_ses_by_in (mp, &in_addr, ntohs ((u16) in_port), key);
       if (!ses)
         vlib_cli_output (vm, "no match");
       else
         snat_det_ses_close (mp, ses);
     }

 done:
   unformat_free (line_input);

   return error;
 }

 static clib_error_t *
 det44_set_timeouts_command_fn (vlib_main_t * vm,
                                unformat_input_t * input,
                                vlib_cli_command_t * cmd)
 {
   unformat_input_t _line_input, *line_input = &_line_input;
   nat_timeouts_t timeouts = { 0 };
   clib_error_t *error = 0;
   u8 reset = 0;

   if (!unformat_user (input, unformat_line_input, line_input))
     return 0;

   while (unformat_check_input (line_input) != UNFORMAT_END_OF_INPUT)
     {
       if (unformat (line_input, "udp %u", &timeouts.udp));
       else if (unformat (line_input, "tcp established %u",
                          &timeouts.tcp.established));
       else if (unformat (line_input, "tcp transitory %u",
                          &timeouts.tcp.transitory));
       else if (unformat (line_input, "icmp %u", &timeouts.icmp));
       else if (unformat (line_input, "reset"))
         reset = 1;
       else
         {
           error = clib_error_return (0, "unknown input '%U'",
                                      format_unformat_error, line_input);
           goto done;
         }
     }

   if (!reset)
     {
       if (det44_set_timeouts (&timeouts))
         {
           error = clib_error_return (0, "error configuring timeouts");
         }
     }
   else
     det44_reset_timeouts ();
 done:
   unformat_free (line_input);
   return error;
 }

 static clib_error_t *
 det44_show_timeouts_command_fn (vlib_main_t * vm,
                                 unformat_input_t * input,
                                 vlib_cli_command_t * cmd)
 {
   nat_timeouts_t timeouts;
   timeouts = det44_get_timeouts ();
   vlib_cli_output (vm, "udp timeout: %dsec", timeouts.udp);
   vlib_cli_output (vm, "tcp established timeout: %dsec",
                    timeouts.tcp.established);
   vlib_cli_output (vm, "tcp transitory timeout: %dsec",
                    timeouts.tcp.transitory);
   vlib_cli_output (vm, "icmp timeout: %dsec", timeouts.icmp);
   return 0;
 }

 static clib_error_t *
 det44_plugin_enable_disable_command_fn (vlib_main_t * vm,
                                         unformat_input_t * input,
                                         vlib_cli_command_t * cmd)
 {
   unformat_input_t _line_input, *line_input = &_line_input;
   u8 enable = 0, is_set = 0;
   clib_error_t *error = 0;
   det44_config_t c = { 0 };

   if (!unformat_user (input, unformat_line_input, line_input))
     return 0;

   while (unformat_check_input (line_input) != UNFORMAT_END_OF_INPUT)
     {
       if (!is_set && unformat (line_input, "enable"))
         {
           unformat (line_input, "inside vrf %u", &c.inside_vrf_id);
           unformat (line_input, "outside vrf %u", &c.outside_vrf_id);
           enable = 1;
         }
       else if (!is_set && unformat (line_input, "disable"));
       else
         {
           error = clib_error_return (0, "unknown input '%U'",
                                      format_unformat_error, line_input);
           goto done;
         }
       is_set = 1;
     }

   if (enable)
     {
       if (det44_plugin_enable (c))
         error = clib_error_return (0, "plugin enable failed");
     }
   else
     {
       if (det44_plugin_disable ())
         error = clib_error_return (0, "plugin disable failed");
     }
 done:
   unformat_free (line_input);
   return error;
 }

 typedef struct
 {
   u32 sw_if_index;
   u8 is_inside;
 } sw_if_indices_t;

 static clib_error_t *
 det44_feature_command_fn (vlib_main_t * vm,
                           unformat_input_t * input, vlib_cli_command_t * cmd)
 {
   unformat_input_t _line_input, *line_input = &_line_input;
   sw_if_indices_t *sw_if_indices = 0, *p, e;
   vnet_main_t *vnm = vnet_get_main ();
   clib_error_t *error = 0;
   u8 is_del = 0;

   if (!unformat_user (input, unformat_line_input, line_input))
     return 0;

   while (unformat_check_input (line_input) != UNFORMAT_END_OF_INPUT)
     {
       if (unformat (line_input, "inside %U", unformat_vnet_sw_interface,
                     vnm, &e.sw_if_index))
         {
           e.is_inside = 1;
           vec_add1 (sw_if_indices, e);
         }
       else if (unformat (line_input, "outside %U", unformat_vnet_sw_interface,
                          vnm, &e.sw_if_index))
         {
           e.is_inside = 0;
           vec_add1 (sw_if_indices, e);
         }
       else if (unformat (line_input, "del"))
         is_del = 1;
       else
         {
           error = clib_error_return (0, "unknown input '%U'",
                                      format_unformat_error, line_input);
           goto done;
         }
     }

   /* *INDENT-OFF* */
   vec_foreach (p, sw_if_indices)
     {
       if (det44_interface_add_del (p->sw_if_index, p->is_inside, is_del))
         {
           error = clib_error_return (0, "%s %s %U failed",
                                      is_del ? "del" : "add",
                                      p->is_inside ? "inside" : "outside",
                                      format_vnet_sw_if_index_name,
                                      vnm, p->sw_if_index);
           break;
         }
     }
   /* *INDENT-ON* */
 done:
   unformat_free (line_input);
   vec_free (sw_if_indices);
   return error;
 }

 static clib_error_t *
 det44_show_interfaces_command_fn (vlib_main_t * vm, unformat_input_t * input,
                                   vlib_cli_command_t * cmd)
 {
   vnet_main_t *vnm = vnet_get_main ();
   det44_main_t *dm = &det44_main;
   det44_interface_t *i;
   vlib_cli_output (vm, "DET44 interfaces:");
   /* *INDENT-OFF* */
   pool_foreach (i, dm->interfaces)
    {
     vlib_cli_output (vm, " %U %s", format_vnet_sw_if_index_name, vnm,
                      i->sw_if_index,
                      (det44_interface_is_inside(i) &&
                       det44_interface_is_outside(i)) ? "in out" :
                      (det44_interface_is_inside(i) ? "in" : "out"));
   }
   /* *INDENT-ON* */
   return 0;
 }

 /* *INDENT-OFF* */
 /*?
  * @cliexpar
  * @cliexstart{det44 add}
  * Create bijective mapping of inside address to outside address and port range
  * pairs, with the purpose of enabling DET44 to reduce logging in CGN
  * deployments.
  * To create mapping between inside network 10.0.0.0/18 and
  * outside network 1.1.1.0/30 use:
  * # vpp# det44 add in 10.0.0.0/18 out 1.1.1.0/30
  * @cliexend
 ?*/
 VLIB_CLI_COMMAND (det44_map_command, static) = {
     .path = "det44 add",
     .short_help = "det44 add in <addr>/<plen> out <addr>/<plen> [del]",
     .function = det44_map_command_fn,
 };

 /*?
  * @cliexpar
  * @cliexpstart{show det44 mappings}
  * Show DET44 mappings
  * vpp# show det44 mappings
  * DET44 mappings:
  *  in 10.0.0.0/24 out 1.1.1.1/32
  *   outside address sharing ratio: 256
  *   number of ports per inside host: 252
  *   sessions number: 0
  * @cliexend
 ?*/
 VLIB_CLI_COMMAND (det44_show_mappings_command, static) = {
     .path = "show det44 mappings",
     .short_help = "show det44 mappings",
     .function = det44_show_mappings_command_fn,
 };

 /*?
  * @cliexpar
  * @cliexstart{det44 forward}
  * Return outside address and port range from inside address for DET44.
  * To obtain outside address and port of inside host use:
  *  vpp# det44 forward 10.0.0.2
  *  1.1.1.0:<1054-1068>
  * @cliexend
 ?*/
 VLIB_CLI_COMMAND (det44_forward_command, static) = {
     .path = "det44 forward",
     .short_help = "det44 forward <addr>",
     .function = det44_forward_command_fn,
 };

 /*?
  * @cliexpar
  * @cliexstart{det44 reverse}
  * Return inside address from outside address and port for DET44.
  * To obtain inside host address from outside address and port use:
  *  #vpp det44 reverse 1.1.1.1:1276
  *  10.0.16.16
  * @cliexend
 ?*/
 VLIB_CLI_COMMAND (det44_reverse_command, static) = {
     .path = "det44 reverse",
     .short_help = "det44 reverse <addr>:<port>",
     .function = det44_reverse_command_fn,
 };

 /*?
  * @cliexpar
  * @cliexstart{show det44 sessions}
  * Show DET44 sessions.
  * vpp# show det44 sessions
  * DET44 sessions:
  *   in 10.0.0.3:3005 out 1.1.1.2:1146 external host 172.16.1.2:3006 state: udp-active expire: 306
  *   in 10.0.0.3:3000 out 1.1.1.2:1141 external host 172.16.1.2:3001 state: udp-active expire: 306
  *   in 10.0.0.4:3005 out 1.1.1.2:1177 external host 172.16.1.2:3006 state: udp-active expire: 306
  * @cliexend
 ?*/
 VLIB_CLI_COMMAND (det44_show_sessions_command, static) = {
   .path = "show det44 sessions",
   .short_help = "show det44 sessions",
   .function = det44_show_sessions_command_fn,
 };

 /*?
  * @cliexpar
  * @cliexstart{det44 close session out}
  * Close session using outside ip address and port
  * and external ip address and port, use:
  *  vpp# det44 close session out 1.1.1.1:1276 2.2.2.2:2387
  * @cliexend
 ?*/
 VLIB_CLI_COMMAND (det44_close_sesion_out_command, static) = {
   .path = "det44 close session out",
   .short_help = "det44 close session out "
                 "<out_addr>:<out_port> <ext_addr>:<ext_port>",
   .function = det44_close_session_out_fn,
 };

 /*?
  * @cliexpar
  * @cliexstart{det44 deterministic close session in}
  * Close session using inside ip address and port
  * and external ip address and port, use:
  *  vpp# det44 close session in 3.3.3.3:3487 2.2.2.2:2387
  * @cliexend
 ?*/
 VLIB_CLI_COMMAND (det44_close_session_in_command, static) = {
   .path = "det44 close session in",
   .short_help = "det44 close session in "
                 "<in_addr>:<in_port> <ext_addr>:<ext_port>",
   .function = det44_close_session_in_fn,
 };

 /*?
  * @cliexpar
  * @cliexstart{set det44 timeout}
  * Set values of timeouts for DET44 sessions (in seconds), use:
  *  vpp# set det44 timeouts udp 120 tcp established 7500 tcp transitory 250 icmp 90
  * To reset default values use:
  *  vpp# set det44 timeouts reset
  * @cliexend
 ?*/
 VLIB_CLI_COMMAND (det44_set_timeouts_command, static) =
 {
   .path = "set det44 timeouts",
   .short_help = "set det44 timeouts <[udp <sec>] [tcp established <sec>] "
                 "[tcp transitory <sec>] [icmp <sec>]|reset>",
   .function = det44_set_timeouts_command_fn,
 };

 /*?
  * @cliexpar
  * @cliexstart{show det44 timeouts}
  * Show values of timeouts for DET44 sessions.
  * vpp# show det44 timeouts
  * udp timeout: 300sec
  * tcp-established timeout: 7440sec
  * tcp-transitory timeout: 240sec
  * icmp timeout: 60sec
  * @cliexend
 ?*/
 VLIB_CLI_COMMAND (det44_show_timeouts_command, static) =
 {
   .path = "show det44 timeouts",
   .short_help = "show det44 timeouts",
   .function = det44_show_timeouts_command_fn,
 };

 /*?
  * @cliexpar
  * @cliexstart{det44 plugin}
  * Enable/disable DET44 plugin.
  * @cliexend
 ?*/
 VLIB_CLI_COMMAND (det44_plugin_enable_disable_command, static) =
 {
   .path = "det44 plugin",
   .short_help = "det44 plugin <enable [inside vrf] [outside vrf]|disable>",
   .function = det44_plugin_enable_disable_command_fn,
 };

 /*?
  * @cliexpar
  * @cliexstart{set interface det44}
  * Enable/disable DET44 feature on the interface.
  * To enable DET44 feature with local network interface use:
  *  vpp# set interface det44 inside GigabitEthernet0/8/0
  * To enable DET44 feature with external network interface use:
  *  vpp# set interface det44 outside GigabitEthernet0/a/0
  * @cliexend
 ?*/
 VLIB_CLI_COMMAND (det44_feature_command, static) =
 {
   .path = "set interface det44",
   .short_help = "set interface det44 inside <intfc> outside <intfc> [del]",
   .function = det44_feature_command_fn,
 };

 /*?
  * @cliexpar
  * @cliexstart{show det44 interfaces}
  * Show interfaces with DET44 feature.
  * vpp# show det44 interfaces
  * DET44 interfaces:
  *  GigabitEthernet0/8/0 in
  *  GigabitEthernet0/a/0 out
  * @cliexend
 ?*/
 VLIB_CLI_COMMAND (det44_show_interfaces_command, static) =
 {
   .path = "show det44 interfaces",
   .short_help = "show det44 interfaces",
   .function = det44_show_interfaces_command_fn,
 };
 /* *INDENT-ON* */

 /*
  * fd.io coding-style-patch-verification: ON
  *
  * Local Variables:
  * eval: (c-set-style "gnu")
  * End:
  */
det44_forward_command_fn
static clib_error_t * det44_forward_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: det44_cli.c:94

vec_foreach_index
#define vec_foreach_index(var, v)
Iterate over vector indices.
Definition: vec_bootstrap.h:219

snat_det_session_t::in_port
u16 in_port
Definition: det44.h:101

snat_det_get_ses_by_out
static_always_inline snat_det_session_t * snat_det_get_ses_by_out(snat_det_map_t *dm, ip4_address_t *in_addr, u64 out_key)
Definition: det44.h:344

snat_det_out_key_t::ext_host_port
u16 ext_host_port
Definition: det44.h:91

det44_plugin_enable
int det44_plugin_enable(det44_config_t c)
Definition: det44.c:358

snat_det_out_key_t::out_port
u16 out_port
Definition: det44.h:92

nat_timeouts_t::tcp
struct nat_timeouts_t::@86 tcp

det44_plugin_disable
int det44_plugin_disable()
Definition: det44.c:385

snat_det_reverse
static_always_inline void snat_det_reverse(snat_det_map_t *dm, ip4_address_t *out_addr, u16 out_port, ip4_address_t *in_addr)
Definition: det44.h:322

ntohs
#define ntohs(x)
Definition: af_xdp.bpf.c:29

det44_config_t::inside_vrf_id
u32 inside_vrf_id
Definition: det44.h:137

vnet_get_main
vnet_main_t * vnet_get_main(void)
Definition: misc.c:46

pool_foreach
#define pool_foreach(VAR, POOL)
Iterate through pool.
Definition: pool.h:527

vec_add1
#define vec_add1(V, E)
Add 1 element to end of vector (unspecified alignment).
Definition: vec.h:592

det44.h
Deterministic NAT (CGN) definitions.

det44_map_command_fn
static clib_error_t * det44_map_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: det44_cli.c:22

unformat_user
uword unformat_user(unformat_input_t *input, unformat_function_t *func,...)
Definition: unformat.c:989

det44_reverse_command_fn
static clib_error_t * det44_reverse_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: det44_cli.c:135

vm
vlib_main_t * vm
Definition: in2out_ed.c:1580

unformat_vnet_sw_interface
unformat_function_t unformat_vnet_sw_interface
Definition: interface_funcs.h:449

format_det_map_ses
format_function_t format_det_map_ses
Definition: det44.h:241

snat_det_map_t::in_plen
u8 in_plen
Definition: det44.h:114

nat_timeouts_t::established
u32 established
Definition: lib.h:80

format_vnet_sw_if_index_name
format_function_t format_vnet_sw_if_index_name
Definition: interface_funcs.h:445

u8
unsigned char u8
Definition: types.h:56

det44_close_session_in_fn
static clib_error_t * det44_close_session_in_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: det44_cli.c:260

format_ip4_address
format_function_t format_ip4_address
Definition: format.h:73

sw_if_indices_t::sw_if_index
u32 sw_if_index
Definition: det44_cli.c:420

unformat_ip4_address
unformat_function_t unformat_ip4_address
Definition: format.h:68

snat_det_out_key_t::ext_host_addr
ip4_address_t ext_host_addr
Definition: det44.h:90

det44_get_timeouts
nat_timeouts_t det44_get_timeouts()
Definition: det44.c:181

snat_det_find_ses_by_in
static_always_inline snat_det_session_t * snat_det_find_ses_by_in(snat_det_map_t *dm, ip4_address_t *in_addr, u16 in_port, snat_det_out_key_t out_key)
Definition: det44.h:361

snat_det_map_t
Definition: det44.h:110

det44_config_t
Definition: det44.h:134

snat_det_map_by_out
static_always_inline snat_det_map_t * snat_det_map_by_out(ip4_address_t *out_addr)
Definition: det44.h:292

vec_elt_at_index
#define vec_elt_at_index(v, i)
Get vector value at index i checking that i is in bounds.
Definition: vec_bootstrap.h:202

clib_error_return
#define clib_error_return(e, args...)
Definition: error.h:99

u32
unsigned int u32
Definition: types.h:88

det44_config_t::outside_vrf_id
u32 outside_vrf_id
Definition: det44.h:136

det44_main_s
Definition: det44.h:146

unformat_line_input
unformat_function_t unformat_line_input
Definition: format.h:282

ip4_address_t
Definition: ip4_packet.h:50

snat_det_session_t
Definition: det44.h:98

error
Definition: cJSON.c:84

nat_timeouts_t::transitory
u32 transitory
Definition: lib.h:81

snat_det_map_t::sessions
snat_det_session_t * sessions
Definition: det44.h:125

sw_if_indices_t
Definition: det44_cli.c:418

unformat_input_t
struct _unformat_input_t unformat_input_t

u16
unsigned short u16
Definition: types.h:57

det44_main
det44_main_t det44_main
Definition: det44.c:30

snat_det_map_t::out_plen
u8 out_plen
Definition: det44.h:117

det44_reset_timeouts
void det44_reset_timeouts()
Definition: det44.c:188

det44_main_s::det_maps
snat_det_map_t * det_maps
Definition: det44.h:163

snat_det_forward
static_always_inline void snat_det_forward(snat_det_map_t *dm, ip4_address_t *in_addr, ip4_address_t *out_addr, u16 *lo_port)
Definition: det44.h:307

UNFORMAT_END_OF_INPUT
#define UNFORMAT_END_OF_INPUT
Definition: format.h:144

det44_interface_t
Definition: det44.h:128

c
svmdb_client_t * c
Definition: vpp_get_metrics.c:48

det44_interface_t::sw_if_index
u32 sw_if_index
Definition: det44.h:130

det44_close_session_out_fn
static clib_error_t * det44_close_session_out_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: det44_cli.c:206

i
sll srl srl sll sra u16x4 i
Definition: vector_sse42.h:317

vec_free
#define vec_free(V)
Free vector&#39;s memory (no header).
Definition: vec.h:380

snat_det_out_key_t::as_u64
u64 as_u64
Definition: det44.h:94

snat_det_map_t::sharing_ratio
u32 sharing_ratio
Definition: det44.h:119

snat_det_map_t::out_addr
ip4_address_t out_addr
Definition: det44.h:116

snat_det_ses_close
static_always_inline void snat_det_ses_close(snat_det_map_t *dm, snat_det_session_t *ses)
Definition: det44.h:414

VLIB_CLI_COMMAND
#define VLIB_CLI_COMMAND(x,...)
Definition: cli.h:158

det44_set_timeouts
int det44_set_timeouts(nat_timeouts_t *timeouts)
Definition: det44.c:166

det44_set_timeouts_command_fn
static clib_error_t * det44_set_timeouts_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: det44_cli.c:312

vnet_main_t
Definition: vnet.h:60

vlib_cli_output
void vlib_cli_output(vlib_main_t *vm, char *fmt,...)
Definition: cli.c:696

snat_det_map_t::in_addr
ip4_address_t in_addr
Definition: det44.h:113

det44_interface_is_inside
#define det44_interface_is_inside(i)
Check if Deterministic NAT interface is inside.
Definition: det44.h:213

snat_det_add_map
int snat_det_add_map(ip4_address_t *in_addr, u8 in_plen, ip4_address_t *out_addr, u8 out_plen, int is_add)
Add/delete deterministic NAT mapping.
Definition: det44.c:99

det44_feature_command_fn
static clib_error_t * det44_feature_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: det44_cli.c:425

clib_error_t
Definition: clib_error.h:21

key
typedef key
Definition: ipsec_types.api:86

det44_plugin_enable_disable_command_fn
static clib_error_t * det44_plugin_enable_disable_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: det44_cli.c:373

det44_main_s::interfaces
det44_interface_t * interfaces
Definition: det44.h:182

det44_show_interfaces_command_fn
static clib_error_t * det44_show_interfaces_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: det44_cli.c:482

det44_show_mappings_command_fn
static clib_error_t * det44_show_mappings_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: det44_cli.c:70

snat_det_map_t::ports_per_host
u16 ports_per_host
Definition: det44.h:121

vlib_main_t
Definition: main.h:119

unformat_free
static void unformat_free(unformat_input_t *i)
Definition: format.h:162

vlib_cli_command_t
Definition: cli.h:91

det44_interface_is_outside
#define det44_interface_is_outside(i)
Check if Deterministic NAT interface is outside.
Definition: det44.h:219

sw_if_indices_t::is_inside
u8 is_inside
Definition: det44_cli.c:421

nat_timeouts_t::udp
u32 udp
Definition: lib.h:84

det44_interface_add_del
int det44_interface_add_del(u32 sw_if_index, u8 is_inside, int is_del)
Definition: det44.c:195

format_unformat_error
u8 * format_unformat_error(u8 *s, va_list *va)
Definition: unformat.c:91

vec_foreach
#define vec_foreach(var, vec)
Vector iterator.
Definition: vec_bootstrap.h:212

snat_det_map_t::ses_num
u32 ses_num
Definition: det44.h:123

det44_show_sessions_command_fn
static clib_error_t * det44_show_sessions_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: det44_cli.c:182

snat_det_map_by_user
static_always_inline snat_det_map_t * snat_det_map_by_user(ip4_address_t *user_addr)
Definition: det44.h:277

nat_timeouts_t
Definition: lib.h:76

snat_det_out_key_t
Definition: det44.h:84

det44_show_timeouts_command_fn
static clib_error_t * det44_show_timeouts_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: det44_cli.c:357

unformat
uword unformat(unformat_input_t *i, const char *fmt,...)
Definition: unformat.c:978

nat_timeouts_t::icmp
u32 icmp
Definition: lib.h:85

unformat_check_input
static uword unformat_check_input(unformat_input_t *i)
Definition: format.h:170