Feature: support IPSET rule (#2693)
This commit is contained in:
major1201
22
component/ipset/ipset_linux.go
Normal file
22
component/ipset/ipset_linux.go
Normal file
@ -0,0 +1,22 @@
|
||||
//go:build linux
|
||||
|
||||
package ipset
|
||||
|
||||
import (
|
||||
"net"
|
||||
|
||||
"github.com/vishvananda/netlink"
|
||||
)
|
||||
|
||||
// Test whether the ip is in the set or not
|
||||
func Test(setName string, ip net.IP) (bool, error) {
|
||||
return netlink.IpsetTest(setName, &netlink.IPSetEntry{
|
||||
IP: ip,
|
||||
})
|
||||
}
|
||||
|
||||
// Verify dumps a specific ipset to check if we can use the set normally
|
||||
func Verify(setName string) error {
|
||||
_, err := netlink.IpsetList(setName)
|
||||
return err
|
||||
}
|
||||
17
component/ipset/ipset_others.go
Normal file
17
component/ipset/ipset_others.go
Normal file
@ -0,0 +1,17 @@
|
||||
//go:build !linux
|
||||
|
||||
package ipset
|
||||
|
||||
import (
|
||||
"net"
|
||||
)
|
||||
|
||||
// Always return false in non-linux
|
||||
func Test(setName string, ip net.IP) (bool, error) {
|
||||
return false, nil
|
||||
}
|
||||
|
||||
// Always pass in non-linux
|
||||
func Verify(setName string) error {
|
||||
return nil
|
||||
}
|
||||
Reference in New Issue
Block a user