summaryrefslogtreecommitdiffstats
path: root/src/plugins/nat/lib/lib.h
blob: dc2c43beaaf6e708fdc54bbddd6701002e531e36 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
/*
 * Copyright (c) 2020 Cisco and/or its affiliates.
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at:
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
/**
 * @file
 * @brief NAT port/address allocation lib
 */
#ifndef included_nat_lib_h__
#define included_nat_lib_h__

#include <vlibapi/api.h>

typedef struct
{
  u16 identifier;
  u16 sequence;
} nat_icmp_echo_header_t;

typedef struct
{
  u16 src_port, dst_port;
} nat_tcp_udp_header_t;

/* NAT API Configuration flags */
#define foreach_nat_config_flag \
  _(0x01, IS_TWICE_NAT)         \
  _(0x02, IS_SELF_TWICE_NAT)    \
  _(0x04, IS_OUT2IN_ONLY)       \
  _(0x08, IS_ADDR_ONLY)         \
  _(0x10, IS_OUTSIDE)           \
  _(0x20, IS_INSIDE)            \
  _(0x40, IS_STATIC)            \
  _(0x80, IS_EXT_HOST_VALID)

typedef enum nat_config_flags_t_
{
#define _(n,f) NAT_API_##f = n,
  foreach_nat_config_flag
#undef _
} nat_config_flags_t;

#define foreach_nat_counter _ (tcp) _ (udp) _ (icmp) _ (other) _ (drops)

#define foreach_nat_error                      \
  _ (VALUE_EXIST, -1, "Value already exists")  \
  _ (NO_SUCH_ENTRY, -2, "No such entry")       \
  _ (UNKNOWN_PROTOCOL, -3, "Unknown protocol") \
  _ (OUT_OF_TRANSLATIONS, -4, "Out of translations")

typedef enum
{
#define _(N, i, s) NAT_ERROR_##N = i,
  foreach_nat_error
#undef _
} nat_error_t;

/* default protocol timeouts */
#define NAT_UDP_TIMEOUT 300
#define NAT_TCP_TRANSITORY_TIMEOUT 240
#define NAT_TCP_ESTABLISHED_TIMEOUT 7440
#define NAT_ICMP_TIMEOUT 60

typedef struct
{
  struct
  {
    u32 established;
    u32 transitory;
  } tcp;

  u32 udp;
  u32 icmp;

} nat_timeouts_t;

static_always_inline void
nat_reset_timeouts (nat_timeouts_t * timeouts)
{
  timeouts->udp = NAT_UDP_TIMEOUT;
  timeouts->tcp.established = NAT_TCP_ESTABLISHED_TIMEOUT;
  timeouts->tcp.transitory = NAT_TCP_TRANSITORY_TIMEOUT;
  timeouts->icmp = NAT_ICMP_TIMEOUT;
}

static_always_inline u32
nat_calc_bihash_buckets (u32 n_elts)
{
  n_elts = n_elts / 2.5;
  u64 lower_pow2 = 1;
  while (lower_pow2 * 2 < n_elts)
    {
      lower_pow2 = 2 * lower_pow2;
    }
  u64 upper_pow2 = 2 * lower_pow2;
  if ((upper_pow2 - n_elts) < (n_elts - lower_pow2))
    {
      if (upper_pow2 <= UINT32_MAX)
	{
	  return upper_pow2;
	}
    }
  return lower_pow2;
}

#endif /* included_nat_lib_h__ */
/*
 * fd.io coding-style-patch-verification: ON
 *
 * Local Variables:
 * eval: (c-set-style "gnu")
 * End:
 */