iptableentry.h

/*
 * Copyright (C) 2016-2017 Pelagicore AB
 *
 * Permission to use, copy, modify, and/or distribute this software for
 * any purpose with or without fee is hereby granted, provided that the
 * above copyright notice and this permission notice appear in all copies.
 *
 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL
 * WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED
 * WARRANTIES OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR
 * BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES
 * OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS,
 * WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION,
 * ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
 * SOFTWARE.
 *
 * For further information see LICENSE
 */

#pragma once

#include "softwarecontainer-common.h"

namespace softwarecontainer {

class IPTableEntry
{
    LOG_DECLARE_CLASS_CONTEXT("IPTE", "IPTable Entry");
public:
    IPTableEntry() : m_type{""}, m_defaultTarget{DROP} {};
    struct portFilter {
        portFilter(bool _any=0, bool _multiport=0, std::string _ports="") :
            any(_any),
            multiport(_multiport),
            ports(_ports)
            {};
        bool any;
        bool multiport;
        std::string ports;
    };

    enum Target
    {
        INVALID_TARGET,
        ACCEPT,
        DROP,
        REJECT
    };

    struct Rule
    {
        std::string host;
        std::vector<std::string> protocols;
        portFilter  ports;
        Target target;
    };

    bool applyRules();

    std::string interpretRule(Rule rule);

    std::string interpretRuleWithProtocol(Rule rule, const std::string &protocol);

    std::string interpretPolicy(void);


    std::string toString();

    std::string m_type;
    std::vector<Rule> m_rules;
    Target m_defaultTarget;
private:
    std::string convertTarget (Target& t);

    bool insertCommand(std::string command);
};

} // namespace softwarecontainer