FD.io VPP  v17.04-9-g99c0734
Vector Packet Processing
snat.h
Go to the documentation of this file.
1 
2 /*
3  * snat.h - simple nat definitions
4  *
5  * Copyright (c) 2016 Cisco and/or its affiliates.
6  * Licensed under the Apache License, Version 2.0 (the "License");
7  * you may not use this file except in compliance with the License.
8  * You may obtain a copy of the License at:
9  *
10  * http://www.apache.org/licenses/LICENSE-2.0
11  *
12  * Unless required by applicable law or agreed to in writing, software
13  * distributed under the License is distributed on an "AS IS" BASIS,
14  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15  * See the License for the specific language governing permissions and
16  * limitations under the License.
17  */
18 #ifndef __included_snat_h__
19 #define __included_snat_h__
20 
21 #include <vnet/vnet.h>
22 #include <vnet/ip/ip.h>
23 #include <vnet/ethernet/ethernet.h>
24 #include <vnet/ip/icmp46_packet.h>
25 #include <vnet/api_errno.h>
26 #include <vppinfra/bihash_8_8.h>
27 #include <vppinfra/dlist.h>
28 #include <vppinfra/error.h>
29 #include <vlibapi/api.h>
30 
31 
32 #define SNAT_UDP_TIMEOUT 300
33 #define SNAT_TCP_TRANSITORY_TIMEOUT 240
34 #define SNAT_TCP_ESTABLISHED_TIMEOUT 7440
35 
36 /* Key */
37 typedef struct {
38  union
39  {
40  struct
41  {
42  ip4_address_t addr;
43  u16 port;
44  u16 protocol:3,
45  fib_index:13;
46  };
47  u64 as_u64;
48  };
49 } snat_session_key_t;
50 
51 typedef struct {
52  union
53  {
54  struct
55  {
56  ip4_address_t ext_host_addr;
57  u16 ext_host_port;
58  u16 out_port;
59  };
60  u64 as_u64;
61  };
62 } snat_det_out_key_t;
63 
64 typedef struct {
65  union
66  {
67  struct
68  {
69  ip4_address_t addr;
70  u32 fib_index;
71  };
72  u64 as_u64;
73  };
74 } snat_user_key_t;
75 
76 typedef struct {
77  union
78  {
79  struct
80  {
81  ip4_address_t addr;
82  u16 port;
83  u16 fib_index;
84  };
85  u64 as_u64;
86  };
87 } snat_worker_key_t;
88 
89 
90 #define foreach_snat_protocol \
91  _(UDP, 0, udp, "udp") \
92  _(TCP, 1, tcp, "tcp") \
93  _(ICMP, 2, icmp, "icmp")
94 
95 typedef enum {
96 #define _(N, i, n, s) SNAT_PROTOCOL_##N = i,
97  foreach_snat_protocol
98 #undef _
99 } snat_protocol_t;
100 
101 
102 #define foreach_snat_session_state \
103  _(0, UNKNOWN, "unknown") \
104  _(1, UDP_ACTIVE, "udp-active") \
105  _(2, TCP_SYN_SENT, "tcp-syn-sent") \
106  _(3, TCP_ESTABLISHED, "tcp-established") \
107  _(4, TCP_FIN_WAIT, "tcp-fin-wait") \
108  _(5, TCP_CLOSE_WAIT, "tcp-close-wait") \
109  _(6, TCP_LAST_ACK, "tcp-last-ack")
110 
111 typedef enum {
112 #define _(v, N, s) SNAT_SESSION_##N = v,
113  foreach_snat_session_state
114 #undef _
115 } snat_session_state_t;
116 
117 
118 #define SNAT_SESSION_FLAG_STATIC_MAPPING 1
119 
120 typedef CLIB_PACKED(struct {
121  snat_session_key_t out2in; /* 0-15 */
122 
123  snat_session_key_t in2out; /* 16-31 */
124 
125  u32 flags; /* 32-35 */
126 
127  /* per-user translations */
128  u32 per_user_index; /* 36-39 */
129 
130  u32 per_user_list_head_index; /* 40-43 */
131 
132  /* Last heard timer */
133  f64 last_heard; /* 44-51 */
134 
135  u64 total_bytes; /* 52-59 */
136 
137  u32 total_pkts; /* 60-63 */
138 
139  /* Outside address */
140  u32 outside_address_index; /* 64-67 */
141 
142 }) snat_session_t;
143 
144 
145 typedef struct {
146  ip4_address_t addr;
147  u32 fib_index;
148  u32 sessions_per_user_list_head_index;
149  u32 nsessions;
150  u32 nstaticsessions;
151 } snat_user_t;
152 
153 typedef struct {
154  ip4_address_t addr;
155  u32 fib_index;
156 #define _(N, i, n, s) \
157  u32 busy_##n##_ports; \
158  uword * busy_##n##_port_bitmap;
159  foreach_snat_protocol
160 #undef _
161 } snat_address_t;
162 
163 typedef struct {
164  u16 in_port;
165  snat_det_out_key_t out;
166  u8 state;
167  u32 expire;
168 } snat_det_session_t;
169 
170 typedef struct {
171  ip4_address_t in_addr;
172  u8 in_plen;
173  ip4_address_t out_addr;
174  u8 out_plen;
175  u32 sharing_ratio;
176  u16 ports_per_host;
177  u32 ses_num;
178  /* vector of sessions */
179  snat_det_session_t * sessions;
180 } snat_det_map_t;
181 
182 typedef struct {
183  ip4_address_t local_addr;
184  ip4_address_t external_addr;
185  u16 local_port;
186  u16 external_port;
187  u8 addr_only;
188  u32 vrf_id;
189  u32 fib_index;
190  snat_protocol_t proto;
191 } snat_static_mapping_t;
192 
193 typedef struct {
194  u32 sw_if_index;
195  u8 is_inside;
196 } snat_interface_t;
197 
198 typedef struct {
199  ip4_address_t l_addr;
200  u16 l_port;
201  u16 e_port;
202  u32 sw_if_index;
203  u32 vrf_id;
204  snat_protocol_t proto;
205  int addr_only;
206  int is_add;
207 } snat_static_map_resolve_t;
208 
209 typedef struct {
210  /* User pool */
211  snat_user_t * users;
212 
213  /* Session pool */
214  snat_session_t * sessions;
215 
216  /* Pool of doubly-linked list elements */
217  dlist_elt_t * list_pool;
218 } snat_main_per_thread_data_t;
219 
220 struct snat_main_s;
221 
222 typedef u32 snat_icmp_match_function_t (struct snat_main_s *sm,
223  vlib_node_runtime_t *node,
224  u32 cpu_index,
225  vlib_buffer_t *b0,
226  snat_session_key_t *p_key,
227  snat_session_key_t *p_value,
228  u8 *p_dont_translate,
229  void *d);
230 
231 typedef u32 (snat_get_worker_function_t) (ip4_header_t * ip, u32 rx_fib_index);
232 
233 typedef struct snat_main_s {
234  /* Main lookup tables */
235  clib_bihash_8_8_t out2in;
236  clib_bihash_8_8_t in2out;
237 
238  /* Find-a-user => src address lookup */
239  clib_bihash_8_8_t user_hash;
240 
241  /* Non-translated packets worker lookup => src address + VRF */
242  clib_bihash_8_8_t worker_by_in;
243 
244  /* Translated packets worker lookup => IP address + port number */
245  clib_bihash_8_8_t worker_by_out;
246 
247  snat_icmp_match_function_t * icmp_match_in2out_cb;
248  snat_icmp_match_function_t * icmp_match_out2in_cb;
249 
250  u32 num_workers;
251  u32 first_worker_index;
252  u32 next_worker;
253  u32 * workers;
254  snat_get_worker_function_t * worker_in2out_cb;
255  snat_get_worker_function_t * worker_out2in_cb;
256 
257  /* Per thread data */
258  snat_main_per_thread_data_t * per_thread_data;
259 
260  /* Find a static mapping by local */
261  clib_bihash_8_8_t static_mapping_by_local;
262 
263  /* Find a static mapping by external */
264  clib_bihash_8_8_t static_mapping_by_external;
265 
266  /* Static mapping pool */
267  snat_static_mapping_t * static_mappings;
268 
269  /* Interface pool */
270  snat_interface_t * interfaces;
271 
272  /* Vector of outside addresses */
273  snat_address_t * addresses;
274 
275  /* sw_if_indices whose intfc addresses should be auto-added */
276  u32 * auto_add_sw_if_indices;
277 
278  /* vector of interface address static mappings to resolve. */
279  snat_static_map_resolve_t *to_resolve;
280 
281  /* Randomize port allocation order */
282  u32 random_seed;
283 
284  /* Worker handoff index */
285  u32 fq_in2out_index;
286  u32 fq_out2in_index;
287 
288  /* in2out and out2in node index */
289  u32 in2out_node_index;
290  u32 out2in_node_index;
291 
292  /* Deterministic NAT */
293  snat_det_map_t * det_maps;
294 
295  /* Config parameters */
296  u8 static_mapping_only;
297  u8 static_mapping_connection_tracking;
298  u8 deterministic;
299  u32 translation_buckets;
300  u32 translation_memory_size;
301  u32 user_buckets;
302  u32 user_memory_size;
303  u32 max_translations_per_user;
304  u32 outside_vrf_id;
305  u32 outside_fib_index;
306  u32 inside_vrf_id;
307  u32 inside_fib_index;
308 
309  /* tenant VRF aware address pool activation flag */
310  u8 vrf_mode;
311 
312  /* API message ID base */
313  u16 msg_id_base;
314 
315  /* convenience */
316  vlib_main_t * vlib_main;
317  vnet_main_t * vnet_main;
318  ip4_main_t * ip4_main;
319  ip_lookup_main_t * ip4_lookup_main;
320  api_main_t * api_main;
321 } snat_main_t;
322 
323 extern snat_main_t snat_main;
324 extern vlib_node_registration_t snat_in2out_node;
325 extern vlib_node_registration_t snat_out2in_node;
326 extern vlib_node_registration_t snat_in2out_fast_node;
327 extern vlib_node_registration_t snat_out2in_fast_node;
328 extern vlib_node_registration_t snat_in2out_worker_handoff_node;
329 extern vlib_node_registration_t snat_out2in_worker_handoff_node;
330 extern vlib_node_registration_t snat_det_in2out_node;
331 extern vlib_node_registration_t snat_det_out2in_node;
332 
333 void snat_free_outside_address_and_port (snat_main_t * sm,
334  snat_session_key_t * k,
335  u32 address_index);
336 
337 int snat_alloc_outside_address_and_port (snat_main_t * sm,
338  u32 fib_index,
339  snat_session_key_t * k,
340  u32 * address_indexp);
341 
342 int snat_static_mapping_match (snat_main_t * sm,
343  snat_session_key_t match,
344  snat_session_key_t * mapping,
345  u8 by_external,
346  u8 *is_addr_only);
347 
348 void snat_add_del_addr_to_fib (ip4_address_t * addr,
349  u8 p_len,
350  u32 sw_if_index,
351  int is_add);
352 
353 format_function_t format_snat_user;
354 
355 typedef struct {
356  u32 cached_sw_if_index;
357  u32 cached_ip4_address;
358 } snat_runtime_t;
359 
360 /** \brief Check if SNAT session is created from static mapping.
361  @param s SNAT session
362  @return 1 if SNAT session is created from static mapping otherwise 0
363 */
364 #define snat_is_session_static(s) s->flags & SNAT_SESSION_FLAG_STATIC_MAPPING
365 
366 /*
367  * Why is this here? Because we don't need to touch this layer to
368  * simply reply to an icmp. We need to change id to a unique
369  * value to NAT an echo request/reply.
370  */
371 
372 typedef struct {
373  u16 identifier;
374  u16 sequence;
375 } icmp_echo_header_t;
376 
377 always_inline snat_protocol_t
378 ip_proto_to_snat_proto (u8 ip_proto)
379 {
380  snat_protocol_t snat_proto = ~0;
381 
382  snat_proto = (ip_proto == IP_PROTOCOL_UDP) ? SNAT_PROTOCOL_UDP : snat_proto;
383  snat_proto = (ip_proto == IP_PROTOCOL_TCP) ? SNAT_PROTOCOL_TCP : snat_proto;
384  snat_proto = (ip_proto == IP_PROTOCOL_ICMP) ? SNAT_PROTOCOL_ICMP : snat_proto;
385 
386  return snat_proto;
387 }
388 
389 always_inline u8
390 snat_proto_to_ip_proto (snat_protocol_t snat_proto)
391 {
392  u8 ip_proto = ~0;
393 
394  ip_proto = (snat_proto == SNAT_PROTOCOL_UDP) ? IP_PROTOCOL_UDP : ip_proto;
395  ip_proto = (snat_proto == SNAT_PROTOCOL_TCP) ? IP_PROTOCOL_TCP : ip_proto;
396  ip_proto = (snat_proto == SNAT_PROTOCOL_ICMP) ? IP_PROTOCOL_ICMP : ip_proto;
397 
398  return ip_proto;
399 }
400 
401 typedef struct {
402  u16 src_port, dst_port;
403 } tcp_udp_header_t;
404 
405 u32 icmp_match_in2out_fast(snat_main_t *sm, vlib_node_runtime_t *node,
406  u32 cpu_index, vlib_buffer_t *b0,
407  snat_session_key_t *p_key,
408  snat_session_key_t *p_value,
409  u8 *p_dont_translate, void *d);
410 u32 icmp_match_in2out_slow(snat_main_t *sm, vlib_node_runtime_t *node,
411  u32 cpu_index, vlib_buffer_t *b0,
412  snat_session_key_t *p_key,
413  snat_session_key_t *p_value,
414  u8 *p_dont_translate, void *d);
415 u32 icmp_match_out2in_fast(snat_main_t *sm, vlib_node_runtime_t *node,
416  u32 cpu_index, vlib_buffer_t *b0,
417  snat_session_key_t *p_key,
418  snat_session_key_t *p_value,
419  u8 *p_dont_translate, void *d);
420 u32 icmp_match_out2in_slow(snat_main_t *sm, vlib_node_runtime_t *node,
421  u32 cpu_index, vlib_buffer_t *b0,
422  snat_session_key_t *p_key,
423  snat_session_key_t *p_value,
424  u8 *p_dont_translate, void *d);
425 
426 static_always_inline u8
427 icmp_is_error_message (icmp46_header_t * icmp)
428 {
429  switch(icmp->type)
430  {
431  case ICMP4_destination_unreachable:
432  case ICMP4_time_exceeded:
433  case ICMP4_parameter_problem:
434  case ICMP4_source_quench:
435  case ICMP4_redirect:
436  case ICMP4_alternate_host_address:
437  return 1;
438  }
439  return 0;
440 }
441 
442 #endif /* __included_snat_h__ */
snat_static_mapping_t::external_addr
ip4_address_t external_addr
Definition: snat.h:184
snat_static_map_resolve_t
Definition: snat.h:198
snat_main_s::user_memory_size
u32 user_memory_size
Definition: snat.h:302
CLIB_PACKED
typedef CLIB_PACKED(struct{snat_session_key_t out2in;snat_session_key_t in2out;u32 flags;u32 per_user_index;u32 per_user_list_head_index;f64 last_heard;u64 total_bytes;u32 total_pkts;u32 outside_address_index;}) snat_session_t
snat_user_t::sessions_per_user_list_head_index
u32 sessions_per_user_list_head_index
Definition: snat.h:148
snat_det_session_t::in_port
u16 in_port
Definition: snat.h:164
snat_user_t
Definition: snat.h:145
snat_det_out_key_t::ext_host_port
u16 ext_host_port
Definition: snat.h:57
snat_det_out_key_t::out_port
u16 out_port
Definition: snat.h:58
snat_alloc_outside_address_and_port
int snat_alloc_outside_address_and_port(snat_main_t *sm, u32 fib_index, snat_session_key_t *k, u32 *address_indexp)
Definition: snat.c:1901
snat_worker_key_t
Definition: snat.h:76
snat_worker_key_t::fib_index
u16 fib_index
Definition: snat.h:83
snat_user_t::nsessions
u32 nsessions
Definition: snat.h:149
snat_icmp_match_function_t
u32 snat_icmp_match_function_t(struct snat_main_s *sm, vlib_node_runtime_t *node, u32 cpu_index, vlib_buffer_t *b0, snat_session_key_t *p_key, snat_session_key_t *p_value, u8 *p_dont_translate, void *d)
Definition: snat.h:222
snat_static_mapping_t::proto
snat_protocol_t proto
Definition: snat.h:190
snat_main_s::in2out
clib_bihash_8_8_t in2out
Definition: snat.h:236
icmp_is_error_message
static_always_inline u8 icmp_is_error_message(icmp46_header_t *icmp)
Definition: snat.h:427
snat_out2in_worker_handoff_node
vlib_node_registration_t snat_out2in_worker_handoff_node
(constructor) VLIB_REGISTER_NODE (snat_out2in_worker_handoff_node)
Definition: out2in.c:83
snat_user_t::nstaticsessions
u32 nstaticsessions
Definition: snat.h:150
vlib_node_registration_t
struct _vlib_node_registration vlib_node_registration_t
snat_det_in2out_node
vlib_node_registration_t snat_det_in2out_node
(constructor) VLIB_REGISTER_NODE (snat_det_in2out_node)
Definition: in2out.c:90
snat_static_mapping_t
Definition: snat.h:182
snat_user_t::fib_index
u32 fib_index
Definition: snat.h:147
format_function_t
u8 *( format_function_t)(u8 *s, va_list *args)
Definition: format.h:48
snat_main_s::det_maps
snat_det_map_t * det_maps
Definition: snat.h:293
tcp_udp_header_t
Definition: snat.h:401
snat_main_s::vrf_mode
u8 vrf_mode
Definition: snat.h:310
snat_main_per_thread_data_t::list_pool
dlist_elt_t * list_pool
Definition: snat.h:217
snat_det_map_t::in_plen
u8 in_plen
Definition: snat.h:172
snat_main_s::worker_by_out
clib_bihash_8_8_t worker_by_out
Definition: snat.h:245
snat_main_s::deterministic
u8 deterministic
Definition: snat.h:298
snat_main_s::user_buckets
u32 user_buckets
Definition: snat.h:301
snat_runtime_t::cached_sw_if_index
u32 cached_sw_if_index
Definition: snat.h:356
icmp_echo_header_t::identifier
u16 identifier
Definition: snat.h:373
icmp_match_out2in_slow
u32 icmp_match_out2in_slow(snat_main_t *sm, vlib_node_runtime_t *node, u32 cpu_index, vlib_buffer_t *b0, snat_session_key_t *p_key, snat_session_key_t *p_value, u8 *p_dont_translate, void *d)
Get address and port values to be used for packet SNAT translation and create session if needed...
Definition: out2in.c:312
snat_main_s::max_translations_per_user
u32 max_translations_per_user
Definition: snat.h:303
vlib_node_runtime_t
Definition: node.h:412
static_always_inline
#define static_always_inline
Definition: clib.h:85
snat_det_out_key_t::ext_host_addr
ip4_address_t ext_host_addr
Definition: snat.h:56
snat_main_s::out2in
clib_bihash_8_8_t out2in
Definition: snat.h:235
icmp_echo_header_t
Definition: snat.h:372
always_inline
#define always_inline
Definition: clib.h:84
snat_det_map_t
Definition: snat.h:170
snat_main_s::translation_buckets
u32 translation_buckets
Definition: snat.h:299
snat_user_t::addr
ip4_address_t addr
Definition: snat.h:146
api_errno.h
snat_static_map_resolve_t::is_add
int is_add
Definition: snat.h:206
snat_in2out_node
vlib_node_registration_t snat_in2out_node
(constructor) VLIB_REGISTER_NODE (snat_in2out_node)
Definition: in2out.c:86
snat_main_s::ip4_main
ip4_main_t * ip4_main
Definition: snat.h:318
u64
unsigned long u64
Definition: types.h:89
snat_session_key_t::as_u64
u64 as_u64
Definition: snat.h:47
snat_static_mapping_t::local_addr
ip4_address_t local_addr
Definition: snat.h:183
snat_static_map_resolve_t::l_port
u16 l_port
Definition: snat.h:200
snat_static_map_resolve_t::proto
snat_protocol_t proto
Definition: snat.h:204
format_snat_user
format_function_t format_snat_user
Definition: snat.h:353
icmp_match_out2in_fast
u32 icmp_match_out2in_fast(snat_main_t *sm, vlib_node_runtime_t *node, u32 cpu_index, vlib_buffer_t *b0, snat_session_key_t *p_key, snat_session_key_t *p_value, u8 *p_dont_translate, void *d)
Get address and port values to be used for packet SNAT translation.
Definition: out2in.c:420
ip4_address_t
Definition: ip4_packet.h:49
snat_det_session_t
Definition: snat.h:163
snat_session_state_t
snat_session_state_t
Definition: snat.h:111
snat_static_map_resolve_t::addr_only
int addr_only
Definition: snat.h:205
snat_session_key_t
Definition: snat.h:37
snat_static_mapping_t::addr_only
u8 addr_only
Definition: snat.h:187
snat_det_map_t::sessions
snat_det_session_t * sessions
Definition: snat.h:179
icmp_echo_header_t::sequence
u16 sequence
Definition: snat.h:374
snat_main_s::vlib_main
vlib_main_t * vlib_main
Definition: snat.h:316
snat_main_s::static_mappings
snat_static_mapping_t * static_mappings
Definition: snat.h:267
snat_main_s::inside_fib_index
u32 inside_fib_index
Definition: snat.h:307
icmp_match_in2out_fast
u32 icmp_match_in2out_fast(snat_main_t *sm, vlib_node_runtime_t *node, u32 cpu_index, vlib_buffer_t *b0, snat_session_key_t *p_key, snat_session_key_t *p_value, u8 *p_dont_translate, void *d)
Get address and port values to be used for packet SNAT translation.
Definition: in2out.c:571
snat_main_s::static_mapping_only
u8 static_mapping_only
Definition: snat.h:296
snat_main_s::user_hash
clib_bihash_8_8_t user_hash
Definition: snat.h:239
snat_in2out_worker_handoff_node
vlib_node_registration_t snat_in2out_worker_handoff_node
(constructor) VLIB_REGISTER_NODE (snat_in2out_worker_handoff_node)
Definition: in2out.c:89
snat_static_map_resolve_t::vrf_id
u32 vrf_id
Definition: snat.h:203
snat_get_worker_function_t
u32( snat_get_worker_function_t)(ip4_header_t *ip, u32 rx_fib_index)
Definition: snat.h:231
snat_main_s::static_mapping_by_external
clib_bihash_8_8_t static_mapping_by_external
Definition: snat.h:264
icmp_match_in2out_slow
u32 icmp_match_in2out_slow(snat_main_t *sm, vlib_node_runtime_t *node, u32 cpu_index, vlib_buffer_t *b0, snat_session_key_t *p_key, snat_session_key_t *p_value, u8 *p_dont_translate, void *d)
Get address and port values to be used for packet SNAT translation and create session if needed...
Definition: in2out.c:477
snat_main_s::api_main
api_main_t * api_main
Definition: snat.h:320
snat_static_mapping_t::vrf_id
u32 vrf_id
Definition: snat.h:188
snat_det_map_t::out_plen
u8 out_plen
Definition: snat.h:174
snat_worker_key_t::addr
ip4_address_t addr
Definition: snat.h:81
snat_main_s::vnet_main
vnet_main_t * vnet_main
Definition: snat.h:317
snat_main_s::inside_vrf_id
u32 inside_vrf_id
Definition: snat.h:306
snat_free_outside_address_and_port
void snat_free_outside_address_and_port(snat_main_t *sm, snat_session_key_t *k, u32 address_index)
Definition: snat.c:1804
snat_main_s::fq_out2in_index
u32 fq_out2in_index
Definition: snat.h:286
api_main_t
Definition: api.h:123
tcp_udp_header_t::src_port
u16 src_port
Definition: snat.h:402
snat_det_out2in_node
vlib_node_registration_t snat_det_out2in_node
(constructor) VLIB_REGISTER_NODE (snat_det_out2in_node)
Definition: out2in.c:84
dlist_elt_t
Definition: dlist.h:28
snat_main_per_thread_data_t::users
snat_user_t * users
Definition: snat.h:211
snat_out2in_node
vlib_node_registration_t snat_out2in_node
(constructor) VLIB_REGISTER_NODE (snat_out2in_node)
Definition: out2in.c:81
snat_main_s::random_seed
u32 random_seed
Definition: snat.h:282
snat_session_key_t::port
u16 port
Definition: snat.h:43
snat_main_t
struct snat_main_s snat_main_t
snat_static_mapping_t::external_port
u16 external_port
Definition: snat.h:186
snat_main_s::outside_vrf_id
u32 outside_vrf_id
Definition: snat.h:304
snat_main_s::static_mapping_connection_tracking
u8 static_mapping_connection_tracking
Definition: snat.h:297
snat_main_s::worker_in2out_cb
snat_get_worker_function_t * worker_in2out_cb
Definition: snat.h:254
snat_main_s
Definition: snat.h:233
snat_interface_t
Definition: snat.h:193
snat_det_out_key_t::as_u64
u64 as_u64
Definition: snat.h:60
vlib_buffer_t
Definition: buffer.h:61
ip_lookup_main_t
Definition: lookup.h:328
snat_det_map_t::sharing_ratio
u32 sharing_ratio
Definition: snat.h:175
snat_det_map_t::out_addr
ip4_address_t out_addr
Definition: snat.h:173
snat_runtime_t
Definition: snat.h:355
snat_main_s::outside_fib_index
u32 outside_fib_index
Definition: snat.h:305
snat_session_key_t::addr
ip4_address_t addr
Definition: snat.h:42
snat_main_s::worker_by_in
clib_bihash_8_8_t worker_by_in
Definition: snat.h:242
snat_static_mapping_t::fib_index
u32 fib_index
Definition: snat.h:189
snat_interface_t::sw_if_index
u32 sw_if_index
Definition: snat.h:194
snat_proto_to_ip_proto
static u8 snat_proto_to_ip_proto(snat_protocol_t snat_proto)
Definition: snat.h:390
foreach_snat_session_state
#define foreach_snat_session_state
Definition: snat.h:102
snat_static_mapping_match
int snat_static_mapping_match(snat_main_t *sm, snat_session_key_t match, snat_session_key_t *mapping, u8 by_external, u8 *is_addr_only)
Match SNAT static mapping.
Definition: snat.c:1845
snat_main_s::auto_add_sw_if_indices
u32 * auto_add_sw_if_indices
Definition: snat.h:276
snat_protocol_t
snat_protocol_t
Definition: snat.h:95
vnet_main_t
Definition: vnet.h:52
snat_main_s::num_workers
u32 num_workers
Definition: snat.h:250
u32
unsigned int u32
Definition: types.h:88
snat_main_s::first_worker_index
u32 first_worker_index
Definition: snat.h:251
snat_main_s::worker_out2in_cb
snat_get_worker_function_t * worker_out2in_cb
Definition: snat.h:255
snat_det_session_t::state
u8 state
Definition: snat.h:166
snat_static_map_resolve_t::l_addr
ip4_address_t l_addr
Definition: snat.h:199
ip_proto_to_snat_proto
static snat_protocol_t ip_proto_to_snat_proto(u8 ip_proto)
Definition: snat.h:378
snat_main_s::icmp_match_out2in_cb
snat_icmp_match_function_t * icmp_match_out2in_cb
Definition: snat.h:248
ip4_main_t
IPv4 main type.
Definition: ip4.h:107
snat_out2in_fast_node
vlib_node_registration_t snat_out2in_fast_node
(constructor) VLIB_REGISTER_NODE (snat_out2in_fast_node)
Definition: out2in.c:82
snat_user_key_t::as_u64
u64 as_u64
Definition: snat.h:72
snat_in2out_fast_node
vlib_node_registration_t snat_in2out_fast_node
(constructor) VLIB_REGISTER_NODE (snat_in2out_fast_node)
Definition: in2out.c:88
snat_main
snat_main_t snat_main
Definition: jvpp_snat.h:39
snat_user_key_t::addr
ip4_address_t addr
Definition: snat.h:69
snat_det_map_t::in_addr
ip4_address_t in_addr
Definition: snat.h:171
snat_main_s::fq_in2out_index
u32 fq_in2out_index
Definition: snat.h:285
snat_main_s::out2in_node_index
u32 out2in_node_index
Definition: snat.h:290
snat_address_t::addr
ip4_address_t addr
Definition: snat.h:154
bihash_8_8.h
u16
unsigned short u16
Definition: types.h:57
icmp46_packet.h
f64
double f64
Definition: types.h:142
u8
unsigned char u8
Definition: types.h:56
snat_main_t
Definition: jvpp_snat.h:26
snat_main_s::msg_id_base
u16 msg_id_base
Definition: snat.h:313
snat_det_map_t::ports_per_host
u16 ports_per_host
Definition: snat.h:176
snat_main_per_thread_data_t
Definition: snat.h:209
vlib_main_t
Definition: main.h:59
snat_static_map_resolve_t::e_port
u16 e_port
Definition: snat.h:201
snat_main_s::workers
u32 * workers
Definition: snat.h:253
snat_main_s::per_thread_data
snat_main_per_thread_data_t * per_thread_data
Definition: snat.h:258
snat_interface_t::is_inside
u8 is_inside
Definition: snat.h:195
snat_det_session_t::out
snat_det_out_key_t out
Definition: snat.h:165
snat_add_del_addr_to_fib
void snat_add_del_addr_to_fib(ip4_address_t *addr, u8 p_len, u32 sw_if_index, int is_add)
Add/del NAT address to FIB.
Definition: snat.c:127
snat_user_key_t::fib_index
u32 fib_index
Definition: snat.h:70
snat_main_s::addresses
snat_address_t * addresses
Definition: snat.h:273
snat_main_s::in2out_node_index
u32 in2out_node_index
Definition: snat.h:289
snat_main_s::to_resolve
snat_static_map_resolve_t * to_resolve
Definition: snat.h:279
snat_main_s::translation_memory_size
u32 translation_memory_size
Definition: snat.h:300
snat_user_key_t
Definition: snat.h:64
snat_det_map_t::ses_num
u32 ses_num
Definition: snat.h:177
snat_main_s::next_worker
u32 next_worker
Definition: snat.h:252
foreach_snat_protocol
#define foreach_snat_protocol
Definition: snat.h:90
addr
vhost_vring_addr_t addr
Definition: vhost-user.h:84
flags
u32 flags
Definition: vhost-user.h:78
snat_det_out_key_t
Definition: snat.h:51
ip4_header_t
Definition: ip4_packet.h:125
snat_main_s::ip4_lookup_main
ip_lookup_main_t * ip4_lookup_main
Definition: snat.h:319
snat_static_map_resolve_t::sw_if_index
u32 sw_if_index
Definition: snat.h:202
snat_main_per_thread_data_t::sessions
snat_session_t * sessions
Definition: snat.h:214
snat_worker_key_t::port
u16 port
Definition: snat.h:82
snat_runtime_t::cached_ip4_address
u32 cached_ip4_address
Definition: snat.h:357
snat_static_mapping_t::local_port
u16 local_port
Definition: snat.h:185
snat_main_s::icmp_match_in2out_cb
snat_icmp_match_function_t * icmp_match_in2out_cb
Definition: snat.h:247
snat_worker_key_t::as_u64
u64 as_u64
Definition: snat.h:85
snat_main_s::static_mapping_by_local
clib_bihash_8_8_t static_mapping_by_local
Definition: snat.h:261
snat_address_t::fib_index
u32 fib_index
Definition: snat.h:155
snat_main_s::interfaces
snat_interface_t * interfaces
Definition: snat.h:270
snat_det_session_t::expire
u32 expire
Definition: snat.h:167