diff options
| author | Matthew Heon <matthew.heon@gmail.com> | 2018-09-09 13:31:56 -0400 |
|---|---|---|
| committer | Atomic Bot <atomic-devel@projectatomic.io> | 2018-09-10 18:53:27 +0000 |
| commit | d377a5157802ac31427d36a072fbaf1b64614423 (patch) | |
| tree | f2b7b06fba54c08a7ddf4bbcff5815c98b371059 /pkg/firewall/common.go | |
| parent | 9405e3704fae9c30b24ad8807174639005b1db6c (diff) | |
| download | podman-d377a5157802ac31427d36a072fbaf1b64614423.tar.gz podman-d377a5157802ac31427d36a072fbaf1b64614423.tar.bz2 podman-d377a5157802ac31427d36a072fbaf1b64614423.zip | |
Replace existing iptables handler with firewall code
Use the new firewall code vendored from CNI to replace the
existing iptables rule addition handler we had in place. This
adds proper support for firewalld and should be much better at
interacting with the firewall.
Signed-off-by: Matthew Heon <matthew.heon@gmail.com>
Closes: #1431
Approved by: baude
Diffstat (limited to 'pkg/firewall/common.go')
| -rw-r--r-- | pkg/firewall/common.go | 6 |
1 files changed, 5 insertions, 1 deletions
diff --git a/pkg/firewall/common.go b/pkg/firewall/common.go index 993c691cd..a65d4f03d 100644 --- a/pkg/firewall/common.go +++ b/pkg/firewall/common.go @@ -21,6 +21,8 @@ import ( ) // FirewallNetConf represents the firewall configuration. +// Nolint applied for firewall.Firewall... name duplication notice. +//nolint type FirewallNetConf struct { //types.NetConf @@ -33,11 +35,13 @@ type FirewallNetConf struct { // to 'trusted' FirewalldZone string - PrevResult *current.Result + PrevResult *current.Result } // FirewallBackend is an interface to the system firewall, allowing addition and // removal of firewall rules. +// Nolint applied for firewall.Firewall... name duplication notice. +//nolint type FirewallBackend interface { Add(*FirewallNetConf) error Del(*FirewallNetConf) error |