mirror of
https://github.com/mirage/qubes-mirage-firewall.git
synced 2024-12-11 16:44:23 -05:00
2d78d47591
Co-Authored-By: Mindy Preston <yomimono@users.noreply.github.com> Co-Authored-By: Olle Jonsson <olle.jonsson@gmail.com> Co-Authored-By: hannes <hannes@mehnert.org> Co-Authored-By: cfcs <cfcs@users.noreply.github.com>
33 lines
903 B
OCaml
33 lines
903 B
OCaml
(* Copyright (C) 2015, Thomas Leonard <thomas.leonard@unikernel.com>
|
|
See the README file for details. *)
|
|
|
|
(** Routing packets to the right network interface. *)
|
|
|
|
open Fw_utils
|
|
|
|
type t = private {
|
|
client_eth : Client_eth.t;
|
|
nat : My_nat.t;
|
|
uplink : interface;
|
|
ports : My_nat.ports;
|
|
}
|
|
|
|
val create :
|
|
client_eth:Client_eth.t ->
|
|
uplink:interface ->
|
|
nat:My_nat.t ->
|
|
t
|
|
(** [create ~client_eth ~uplink ~nat] is a new routing table
|
|
that routes packets outside of [client_eth] via [uplink]. *)
|
|
|
|
val target : t -> Ipv4_packet.t -> interface option
|
|
(** [target t packet] is the interface to which [packet] should be routed. *)
|
|
|
|
val add_client : t -> client_link -> unit Lwt.t
|
|
(** [add_client t iface] adds a rule for routing packets addressed to [iface]. *)
|
|
|
|
val remove_client : t -> client_link -> unit
|
|
|
|
val classify : t -> Ipaddr.t -> Packet.host
|
|
val resolve : t -> Packet.host -> Ipaddr.t
|