-
Notifications
You must be signed in to change notification settings - Fork 51
/
constants.go
69 lines (59 loc) · 2.06 KB
/
constants.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
package constants
const (
// DefaultDockerSocket is the default socket to use to communicate with docker
DefaultDockerSocket = "/var/run/docker.sock"
// DefaultDockerSocketType is unix
DefaultDockerSocketType = "unix"
)
// ModeType defines the mode of the enforcement and supervisor.
type ModeType int
const (
// RemoteContainer indicates that the Supervisor is implemented in the
// container namespace
RemoteContainer ModeType = iota
// LocalContainer indicates that the Supervisor is implemented in the host
// namespace
LocalContainer
// LocalServer indicates that the Supervisor applies to Linux processes
LocalServer
)
// ImplementationType defines the type of iptables or ipsets implementation
type ImplementationType int
const (
// IPSets mandates an IPset supervisor implementation
IPSets ImplementationType = iota
// IPTables mandates an IPTable supervisor implementation
IPTables
// Remote indicates that this is a remote supervisor
)
// PUType defines the PU type
type PUType int
const (
// ContainerPU indicates that this PU is a container
ContainerPU PUType = iota
// LinuxProcessPU indicates that this is Linux process
LinuxProcessPU
// KubernetesPU indicates that this is KubernetesPod
KubernetesPU
// UIDLoginPU -- PU representing a user session
UIDLoginPU
// TransientPU PU -- placeholder to run processing. This should not
// be inserted in any cache. This is valid only for processing a packet
TransientPU
// HostPU indicates that we must apply policy to the host namespace
HostPU
)
const (
// DefaultRemoteArg is the default arguments for a remote enforcer
DefaultRemoteArg = "enforce"
// DefaultConnMark is the default conn mark for all data packets
DefaultConnMark = uint32(0xEEEE)
)
const (
//DefaultProxyPort the default port the l4 proxy listens on
DefaultProxyPort = "5000"
//DefaultProcMountPoint The default proc mountpoint
DefaultProcMountPoint = "/proc"
//DefaultAporetoProcMountPoint The aporeto proc mountpoint just in case we are launched with some specific docker config
DefaultAporetoProcMountPoint = "/aporetoproc"
)