Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add iptables rule builder #5666

Closed
wants to merge 1 commit into from
Closed

Add iptables rule builder #5666

wants to merge 1 commit into from

Conversation

hongliangl
Copy link
Contributor

@hongliangl hongliangl commented Nov 3, 2023
edited
Loading

This patch provides a simple way to build iptables rules.

@hongliangl
Add iptables rule builder
312c7a5 
This patch provides a simple way to build iptables rules.

Signed-off-by: Hongliang Liu <lhongliang@vmware.com>
@hongliangl hongliangl force-pushed the 20231103-add-iptables-builder branch from c1a7c12 to 312c7a5 Compare November 3, 2023 05:43
luolanzone
luolanzone reviewed Nov 9, 2023
View reviewed changes
pkg/agent/util/iptables/interfaces.go

type IPTablesRuleBuilder interface {
MatchIPSetSrc(ipset string) IPTablesRuleBuilder
MatchIPSetDst(ipset string) IPTablesRuleBuilder
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Maybe add an empty line after each method to be more readable.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Will do

pkg/agent/util/iptables/interfaces.go

"antrea.io/antrea/pkg/apis/controlplane/v1beta2"
)

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I saw there are "type Interface interface" in the iptables.go, maybe it can also be moved here?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Agree

pkg/agent/util/iptables/builder_test.go
MatchInputInterface(eth0).
MatchTransProtocol(v1beta2.ProtocolTCP).
MatchDstPort(port8080, nil).
SetComment(`"Accept TCP 8080"`).
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Are these double quotes required for the parameter? if yes, can we move it to inside of SetComment?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good idea!

@hongliangl hongliangl mentioned this pull request Nov 13, 2023
Closed
luolanzone
luolanzone reviewed Dec 6, 2023
View reviewed changes
Copy link
Contributor

@luolanzone luolanzone left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks like you already include these changes in #5658, please close this PR if it's no longer needed.

@hongliangl
Copy link
Contributor Author

Looks like you already include these changes in #5658, please close this PR if it's no longer needed.

OK

@hongliangl hongliangl closed this Dec 6, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@luolanzone luolanzone luolanzone left review comments

@tnqn tnqn Awaiting requested review from tnqn

@antoninbas antoninbas Awaiting requested review from antoninbas

@wenyingd wenyingd Awaiting requested review from wenyingd

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@hongliangl @luolanzone