summaryrefslogtreecommitdiffstats
path: root/src/plugins/nat/nat_ipfix_logging.h
blob: 6dbf6627fba0c341bbc50be39b96508e94c9bad7 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79

/*
 * nat_ipfix_logging.h - NAT Events IPFIX logging
 *
 * Copyright (c) 2016 Cisco and/or its affiliates.
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at:
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
#ifndef __included_nat_ipfix_logging_h__
#define __included_nat_ipfix_logging_h__

typedef enum {
  NAT_ADDRESSES_EXHAUTED = 3,
  NAT44_SESSION_CREATE = 4,
  NAT44_SESSION_DELETE = 5,
  NAT_PORTS_EXHAUSTED = 12,
  QUOTA_EXCEEDED = 13,
} nat_event_t;

typedef enum {
  MAX_ENTRIES_PER_USER = 3,
} quota_exceed_event_t;

typedef struct {
  /** NAT plugin IPFIX logging enabled */
  u8 enabled;

  /** ipfix buffers under construction */
  vlib_buffer_t *nat44_session_buffer;
  vlib_buffer_t *addr_exhausted_buffer;
  vlib_buffer_t *max_entries_per_user_buffer;

  /** frames containing ipfix buffers */
  vlib_frame_t *nat44_session_frame;
  vlib_frame_t *addr_exhausted_frame;
  vlib_frame_t *max_entries_per_user_frame;

  /** next record offset */
  u32 nat44_session_next_record_offset;
  u32 addr_exhausted_next_record_offset;
  u32 max_entries_per_user_next_record_offset;

  /** Time reference pair */
  u64 milisecond_time_0;
  f64 vlib_time_0;

  /** template IDs */
  u16 nat44_session_template_id;
  u16 addr_exhausted_template_id;
  u16 max_entries_per_user_template_id;

  /** stream index */
  u32 stream_index;
} snat_ipfix_logging_main_t;

extern snat_ipfix_logging_main_t snat_ipfix_logging_main;

void snat_ipfix_logging_init (vlib_main_t * vm);
int snat_ipfix_logging_enable_disable (int enable, u32 domain_id, u16 src_port);
void snat_ipfix_logging_nat44_ses_create (u32 src_ip, u32 nat_src_ip,

}

/*
 * Copyright (c) 2015 Cisco and/or its affiliates.
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at:
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
/*
 * ppp.c: ppp support
 *
 * Copyright (c) 2010 Eliot Dresselhaus
 *
 * Permission is hereby granted, free of charge, to any person obtaining
 * a copy of this software and associated documentation files (the
 * "Software"), to deal in the Software without restriction, including
 * without limitation the rights to use, copy, modify, merge, publish,
 * distribute, sublicense, and/or sell copies of the Software, and to
 * permit persons to whom the Software is fur
NECTION * WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. */ #include <vnet/vnet.h> #include <vnet/ppp/ppp.h> /* Global main structure. */ ppp_main_t ppp_main; u8 * format_ppp_protocol (u8 * s, va_list * args) { ppp_protocol_t p = va_arg (*args, u32); ppp_main_t *pm = &ppp_main; ppp_protocol_info_t *pi = ppp_get_protocol_info (pm, p); if (pi) s = format (s, "%s", pi->name); else s = format (s, "0x%04x", p); return s; } u8 * format_ppp_header_with_length (u8 * s, va_list * args) { ppp_main_t *pm = &ppp_main; ppp_header_t *h = va_arg (*args, ppp_header_t *); u32 max_header_bytes = va_arg (*args, u32); ppp_protocol_t p = clib_net_to_host_u16 (h->protocol); u32 indent, header_bytes; header_bytes = sizeof (h[0]); if (max_header_bytes != 0 && header_bytes > max_header_bytes) return format (s, "ppp header truncated"); indent = format_get_indent (s); s = format (s, "PPP %U", format_ppp_protocol, p); if (h->address != 0xff) s = format (s, ", address 0x%02x", h->address); if (h->control != 0x03) s = format (s, ", control 0x%02x", h->control); if (max_header_bytes != 0 && header_bytes > max_header_bytes) { ppp_protocol_info_t *pi = ppp_get_protocol_info (pm, p); vlib_node_t *node = vlib_get_node (pm->vlib_main, pi->node_index); if (node->format_buffer) s = format (s, "\n%U%U", format_white_space, indent, node->format_buffer, (void *) (h + 1), max_header_bytes - header_bytes); } return s; } u8 * format_ppp_header (u8 * s, va_list * args) { ppp_header_t *h = va_arg (*args, ppp_header_t *); return format (s, "%U", format_ppp_header_with_length, h, 0); } /* Returns ppp protocol as an int in host byte order. */ uword unformat_ppp_protocol_host_byte_order (unformat_input_t * input, va_list * args) { u16 *result = va_arg (*args, u16 *); ppp_main_t *pm = &ppp_main; int p, i; /* Numeric type. */ if (unformat (input, "0x%x", &p) || unformat (input, "%d", &p)) { if (p >= (1 << 16)) return 0; *result = p; return 1; } /* Named type. */ if (unformat_user (input, unformat_vlib_number_by_name, pm->protocol_info_by_name, &i)) { ppp_protocol_info_t *pi = vec_elt_at_index (pm->protocol_infos, i); *result = pi->protocol; return 1; } return 0; } uword unformat_ppp_protocol_net_byte_order (unformat_input_t * input, va_list * args) { u16 *result = va_arg (*args, u16 *); if (!unformat_user (input, unformat_ppp_protocol_host_byte_order, result)) return 0; *result = clib_host_to_net_u16 ((u16) * result); return 1; } uword unformat_ppp_header (unformat_input_t * input, va_list * args) { u8 **result = va_arg (*args, u8 **); ppp_header_t _h, *h = &_h; u16 p; if (!unformat (input, "%U", unformat_ppp_protocol_host_byte_order, &p)) return 0; h->address = 0xff; h->control = 0x03; h->protocol = clib_host_to_net_u16 (p); /* Add header to result. */ { void *p; u32 n_bytes = sizeof (h[0]); vec_add2 (*result, p, n_bytes); clib_memcpy (p, h, n_bytes); } return 1; } static u8 * ppp_build_rewrite (vnet_main_t * vnm, u32 sw_if_index, vnet_link_t link_type, const void *dst_hw_address) { ppp_header_t *h; u8 *rewrite = NULL; ppp_protocol_t protocol; switch (link_type) { #define _(a,b) case VNET_LINK_##a: protocol = PPP_PROTOCOL_##b; break _(IP4, ip4); _(IP6, ip6); _(MPLS, mpls_unicast); #undef _ default: return (NULL); } vec_validate (rewrite, sizeof (*h) - 1); h = (ppp_header_t *) rewrite; h->address = 0xff; h->control = 0x03; h->protocol = clib_host_to_net_u16 (protocol); return (rewrite); } /* *INDENT-OFF* */ VNET_HW_INTERFACE_CLASS (ppp_hw_interface_class) = { .name = "PPP", .format_header = format_ppp_header_with_length, .unformat_header = unformat_ppp_header, .build_rewrite = ppp_build_rewrite, .flags = VNET_HW_INTERFACE_CLASS_FLAG_P2P, }; /* *INDENT-ON* */ static void add_protocol (ppp_main_t * pm, ppp_protocol_t protocol, char *protocol_name) { ppp_protocol_info_t *pi; u32 i; vec_add2 (pm->protocol_infos, pi, 1); i = pi - pm->protocol_infos; pi->name = protocol_name; pi->protocol = protocol; pi->next_index = pi->node_index = ~0; hash_set (pm->protocol_info_by_protocol, protocol, i); hash_set_mem (pm->protocol_info_by_name, pi->name, i); } static clib_error_t * ppp_init (vlib_main_t * vm) { ppp_main_t *pm = &ppp_main; clib_memset (pm, 0, sizeof (pm[0])); pm->vlib_main = vm; pm->protocol_info_by_name = hash_create_string (0, sizeof (uword)); pm->protocol_info_by_protocol = hash_create (0, sizeof (uword)); #define _(n,s) add_protocol (pm, PPP_PROTOCOL_##s, #s); foreach_ppp_protocol; #undef _ return vlib_call_init_function (vm, ppp_input_init); } VLIB_INIT_FUNCTION (ppp_init); /* * fd.io coding-style-patch-verification: ON * * Local Variables: * eval: (c-set-style "gnu") * End: */