Expand description
Framework for packet filtering.
Structs§
- Filter
Api - The filtering API.
- Hook
- A particular entry point for packet processing in which filtering routines are installed.
- IpRoutines
- Routines that perform ordinary IP filtering.
- NatRoutines
- Routines that can perform NAT.
- Packet
Matcher - Top-level matcher for IP packets.
- Proof
OfEgress Check - A witness type to indicate that the egress filtering hook has been run.
- Routine
- A sequence of
Rules. - Routines
- IP version-specific filtering routine state.
- Rule
- A set of criteria (matchers) and a resultant action to take if a given packet matches.
- Transport
Protocol Matcher - A matcher for transport-layer protocol or port numbers.
- Tuple
- A tuple for a flow in a single direction.
- Uninstalled
Routine - A handle to a
Routinethat is not installed in a particular hook, and therefore is only run if jumped to from another routine.
Enums§
- Action
- The action to take on a packet.
- Mark
Action - An action that can be applied to a mark.
- Socket
Egress Filter Result - Result returned from
SocketOpsFilter::on_egress. - Socket
Ingress Filter Result - Result returned from
SocketOpsFilter::on_ingress. - Transparent
Proxy - Transparently intercept the packet and deliver it to a local socket without changing the packet header.
- Validation
Error - Provided filtering state was invalid.
Traits§
- Filter
Bindings Context - Trait aggregating functionality required from bindings.
- Filter
Bindings Types - Trait defining required types for filtering provided by bindings.
- Filter
IpExt - An IP extension trait for the filtering crate.
- IpPacket
- An IP packet that provides header inspection.
- Socket
OpsFilter - Trait for a socket operations filter.
- Socket
OpsFilter Binding Context - Implemented by bindings to provide socket operations filtering.