2 * Copyright (c) 2020 Cisco and/or its affiliates.
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at:
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
18 * @brief NAT44 plugin API implementation
21 #include <vnet/ip/ip_types_api.h>
22 #include <vlibmemory/api.h>
24 #include <vnet/fib/fib_table.h>
26 #include <nat/lib/nat_inlines.h>
27 #include <nat/lib/ipfix_logging.h>
29 #include <nat/nat44-ed/nat44_ed.h>
31 #include <nat/nat44-ed/nat44_ed.api_enum.h>
32 #include <nat/nat44-ed/nat44_ed.api_types.h>
34 #include <nat/nat44-ed/nat44_ed_inlines.h>
36 #define REPLY_MSG_ID_BASE sm->msg_id_base
37 #include <vlibapi/api_helper_macros.h>
42 vl_api_nat44_ed_plugin_enable_disable_t_handler (
43 vl_api_nat44_ed_plugin_enable_disable_t *mp)
45 snat_main_t *sm = &snat_main;
46 nat44_config_t c = { 0 };
47 vl_api_nat44_ed_plugin_enable_disable_reply_t *rmp;
52 if ((mp->flags & NAT44_API_IS_STATIC_MAPPING_ONLY) ||
53 (mp->flags & NAT44_API_IS_CONNECTION_TRACKING))
55 rv = VNET_API_ERROR_UNSUPPORTED;
59 c.sessions = ntohl (mp->sessions);
60 c.inside_vrf = ntohl (mp->inside_vrf);
61 c.outside_vrf = ntohl (mp->outside_vrf);
63 rv = nat44_plugin_enable (c);
68 rv = nat44_plugin_disable ();
71 REPLY_MACRO (VL_API_NAT44_ED_PLUGIN_ENABLE_DISABLE_REPLY);
75 vl_api_nat44_ed_set_fq_options_t_handler (vl_api_nat44_ed_set_fq_options_t *mp)
77 snat_main_t *sm = &snat_main;
78 vl_api_nat44_ed_set_fq_options_reply_t *rmp;
80 u32 frame_queue_nelts = ntohl (mp->frame_queue_nelts);
81 rv = nat44_ed_set_frame_queue_nelts (frame_queue_nelts);
82 REPLY_MACRO (VL_API_NAT44_ED_SET_FQ_OPTIONS_REPLY);
86 vl_api_nat44_ed_show_fq_options_t_handler (
87 vl_api_nat44_ed_show_fq_options_t *mp)
89 snat_main_t *sm = &snat_main;
90 vl_api_nat44_ed_show_fq_options_reply_t *rmp;
92 /* clang-format off */
93 REPLY_MACRO2_ZERO (VL_API_NAT44_ED_SHOW_FQ_OPTIONS_REPLY,
95 rmp->frame_queue_nelts = htonl (sm->frame_queue_nelts);
100 /* Old API calls hold back because of deprecation
101 * nat44_ed replacement should be used */
104 vl_api_nat_set_workers_t_handler (vl_api_nat_set_workers_t * mp)
106 snat_main_t *sm = &snat_main;
107 vl_api_nat_set_workers_reply_t *rmp;
112 mask = clib_net_to_host_u64 (mp->worker_mask);
114 if (sm->num_workers < 2)
116 rv = VNET_API_ERROR_FEATURE_DISABLED;
120 bitmap = clib_bitmap_set_multiple (bitmap, 0, mask, BITS (mask));
121 rv = snat_set_workers (bitmap);
122 clib_bitmap_free (bitmap);
125 REPLY_MACRO (VL_API_NAT_SET_WORKERS_REPLY);
129 send_nat_worker_details (u32 worker_index, vl_api_registration_t * reg,
132 vl_api_nat_worker_details_t *rmp;
133 snat_main_t *sm = &snat_main;
134 vlib_worker_thread_t *w =
135 vlib_worker_threads + worker_index + sm->first_worker_index;
137 rmp = vl_msg_api_alloc (sizeof (*rmp));
138 clib_memset (rmp, 0, sizeof (*rmp));
139 rmp->_vl_msg_id = ntohs (VL_API_NAT_WORKER_DETAILS + sm->msg_id_base);
140 rmp->context = context;
141 rmp->worker_index = htonl (worker_index);
142 rmp->lcore_id = htonl (w->cpu_id);
143 strncpy ((char *) rmp->name, (char *) w->name, ARRAY_LEN (rmp->name) - 1);
145 vl_api_send_msg (reg, (u8 *) rmp);
149 vl_api_nat_worker_dump_t_handler (vl_api_nat_worker_dump_t * mp)
151 vl_api_registration_t *reg;
152 snat_main_t *sm = &snat_main;
155 reg = vl_api_client_index_to_registration (mp->client_index);
159 vec_foreach (worker_index, sm->workers)
161 send_nat_worker_details (*worker_index, reg, mp->context);
166 vl_api_nat44_set_session_limit_t_handler (vl_api_nat44_set_session_limit_t *
169 snat_main_t *sm = &snat_main;
170 vl_api_nat44_set_session_limit_reply_t *rmp;
173 rv = nat44_set_session_limit
174 (ntohl (mp->session_limit), ntohl (mp->vrf_id));
176 REPLY_MACRO (VL_API_NAT44_SET_SESSION_LIMIT_REPLY);
180 vl_api_nat_ipfix_enable_disable_t_handler (vl_api_nat_ipfix_enable_disable_t *
183 snat_main_t *sm = &snat_main;
184 vl_api_nat_ipfix_enable_disable_reply_t *rmp;
187 rv = nat_ipfix_logging_enable_disable (mp->enable,
190 clib_host_to_net_u16 (mp->src_port));
192 REPLY_MACRO (VL_API_NAT_IPFIX_ENABLE_DISABLE_REPLY);
196 vl_api_nat_set_timeouts_t_handler (vl_api_nat_set_timeouts_t * mp)
198 snat_main_t *sm = &snat_main;
199 vl_api_nat_set_timeouts_reply_t *rmp;
202 sm->timeouts.udp = ntohl (mp->udp);
203 sm->timeouts.tcp.established = ntohl (mp->tcp_established);
204 sm->timeouts.tcp.transitory = ntohl (mp->tcp_transitory);
205 sm->timeouts.icmp = ntohl (mp->icmp);
207 REPLY_MACRO (VL_API_NAT_SET_TIMEOUTS_REPLY);
211 vl_api_nat_set_mss_clamping_t_handler (vl_api_nat_set_mss_clamping_t * mp)
213 snat_main_t *sm = &snat_main;
214 vl_api_nat_set_mss_clamping_reply_t *rmp;
218 sm->mss_clamping = ntohs (mp->mss_value);
220 sm->mss_clamping = 0;
222 REPLY_MACRO (VL_API_NAT_SET_MSS_CLAMPING_REPLY);
226 vl_api_nat_get_mss_clamping_t_handler (vl_api_nat_get_mss_clamping_t * mp)
228 snat_main_t *sm = &snat_main;
229 vl_api_nat_get_mss_clamping_reply_t *rmp;
232 REPLY_MACRO2 (VL_API_NAT_GET_MSS_CLAMPING_REPLY,
234 rmp->enable = sm->mss_clamping ? 1 : 0;
235 rmp->mss_value = htons (sm->mss_clamping);
240 vl_api_nat44_add_del_address_range_t_handler
241 (vl_api_nat44_add_del_address_range_t * mp)
243 snat_main_t *sm = &snat_main;
244 vl_api_nat44_add_del_address_range_reply_t *rmp;
245 ip4_address_t this_addr;
246 u8 is_add, twice_nat;
247 u32 start_host_order, end_host_order;
254 twice_nat = mp->flags & NAT_API_IS_TWICE_NAT;
256 tmp = (u32 *) mp->first_ip_address;
257 start_host_order = clib_host_to_net_u32 (tmp[0]);
258 tmp = (u32 *) mp->last_ip_address;
259 end_host_order = clib_host_to_net_u32 (tmp[0]);
261 count = (end_host_order - start_host_order) + 1;
263 vrf_id = clib_host_to_net_u32 (mp->vrf_id);
266 nat_log_info ("%U - %U, %d addresses...",
267 format_ip4_address, mp->first_ip_address,
268 format_ip4_address, mp->last_ip_address, count);
270 memcpy (&this_addr.as_u8, mp->first_ip_address, 4);
272 for (i = 0; i < count; i++)
276 rv = nat44_ed_add_address (&this_addr, vrf_id, twice_nat);
280 rv = nat44_ed_del_address (this_addr, twice_nat);
286 increment_v4_address (&this_addr);
290 REPLY_MACRO (VL_API_NAT44_ADD_DEL_ADDRESS_RANGE_REPLY);
294 send_nat44_address_details (snat_address_t * a,
295 vl_api_registration_t * reg, u32 context,
298 vl_api_nat44_address_details_t *rmp;
299 snat_main_t *sm = &snat_main;
301 rmp = vl_msg_api_alloc (sizeof (*rmp));
302 clib_memset (rmp, 0, sizeof (*rmp));
303 rmp->_vl_msg_id = ntohs (VL_API_NAT44_ADDRESS_DETAILS + sm->msg_id_base);
304 clib_memcpy (rmp->ip_address, &(a->addr), 4);
305 if (a->fib_index != ~0)
307 fib_table_t *fib = fib_table_get (a->fib_index, FIB_PROTOCOL_IP4);
308 rmp->vrf_id = ntohl (fib->ft_table_id);
313 rmp->flags |= NAT_API_IS_TWICE_NAT;
314 rmp->context = context;
316 vl_api_send_msg (reg, (u8 *) rmp);
320 vl_api_nat44_address_dump_t_handler (vl_api_nat44_address_dump_t * mp)
322 vl_api_registration_t *reg;
323 snat_main_t *sm = &snat_main;
326 reg = vl_api_client_index_to_registration (mp->client_index);
330 vec_foreach (a, sm->addresses)
331 send_nat44_address_details (a, reg, mp->context, 0);
332 vec_foreach (a, sm->twice_nat_addresses)
333 send_nat44_address_details (a, reg, mp->context, 1);
337 vl_api_nat44_interface_add_del_feature_t_handler
338 (vl_api_nat44_interface_add_del_feature_t * mp)
340 vl_api_nat44_interface_add_del_feature_reply_t *rmp;
341 snat_main_t *sm = &snat_main;
346 VALIDATE_SW_IF_INDEX (mp);
348 is_inside = mp->flags & NAT_API_IS_INSIDE;
349 sw_if_index = ntohl (mp->sw_if_index);
353 rv = nat44_ed_add_interface (sw_if_index, is_inside);
357 rv = nat44_ed_del_interface (sw_if_index, is_inside);
360 BAD_SW_IF_INDEX_LABEL;
361 REPLY_MACRO (VL_API_NAT44_INTERFACE_ADD_DEL_FEATURE_REPLY);
365 send_nat44_interface_details (snat_interface_t * i,
366 vl_api_registration_t * reg, u32 context)
368 vl_api_nat44_interface_details_t *rmp;
369 snat_main_t *sm = &snat_main;
371 rmp = vl_msg_api_alloc (sizeof (*rmp));
372 clib_memset (rmp, 0, sizeof (*rmp));
373 rmp->_vl_msg_id = ntohs (VL_API_NAT44_INTERFACE_DETAILS + sm->msg_id_base);
374 rmp->sw_if_index = ntohl (i->sw_if_index);
376 if (nat44_ed_is_interface_inside (i))
377 rmp->flags |= NAT_API_IS_INSIDE;
378 if (nat44_ed_is_interface_outside (i))
379 rmp->flags |= NAT_API_IS_OUTSIDE;
381 rmp->context = context;
383 vl_api_send_msg (reg, (u8 *) rmp);
387 vl_api_nat44_interface_dump_t_handler (vl_api_nat44_interface_dump_t * mp)
389 vl_api_registration_t *reg;
390 snat_main_t *sm = &snat_main;
393 reg = vl_api_client_index_to_registration (mp->client_index);
397 pool_foreach (i, sm->interfaces)
399 send_nat44_interface_details (i, reg, mp->context);
404 vl_api_nat44_ed_add_del_output_interface_t_handler (
405 vl_api_nat44_ed_add_del_output_interface_t *mp)
407 vl_api_nat44_ed_add_del_output_interface_reply_t *rmp;
408 snat_main_t *sm = &snat_main;
411 VALIDATE_SW_IF_INDEX_END (mp);
415 rv = nat44_ed_add_output_interface (mp->sw_if_index);
419 rv = nat44_ed_del_output_interface (mp->sw_if_index);
423 REPLY_MACRO_END (VL_API_NAT44_ED_ADD_DEL_OUTPUT_INTERFACE_REPLY);
427 #include <nat/nat44-ed/nat44_ed.api.h>
430 send_nat44_ed_output_interface_details (u32 index, vl_api_registration_t *rp,
433 snat_main_t *sm = &snat_main;
434 vl_api_nat44_ed_output_interface_details_t *rmp;
435 snat_interface_t *i =
436 pool_elt_at_index (sm->output_feature_interfaces, index);
438 /* Make sure every field is initiated (or don't skip the clib_memset()) */
439 REPLY_MACRO_DETAILS4 (
440 VL_API_NAT44_ED_OUTPUT_INTERFACE_DETAILS, rp, context, ({
441 rmp->sw_if_index = i->sw_if_index;
443 /* Endian hack until apigen registers _details
444 * endian functions */
445 vl_api_nat44_ed_output_interface_details_t_endian (rmp,
447 rmp->_vl_msg_id = htons (rmp->_vl_msg_id);
448 rmp->context = htonl (rmp->context);
453 vl_api_nat44_ed_output_interface_get_t_handler (
454 vl_api_nat44_ed_output_interface_get_t *mp)
456 vl_api_nat44_ed_output_interface_get_reply_t *rmp;
457 snat_main_t *sm = &snat_main;
460 if (pool_elts (sm->output_feature_interfaces) == 0)
462 REPLY_MACRO (VL_API_NAT44_ED_OUTPUT_INTERFACE_GET_REPLY);
466 REPLY_AND_DETAILS_MACRO (
467 VL_API_NAT44_ED_OUTPUT_INTERFACE_GET_REPLY, sm->output_feature_interfaces,
468 ({ send_nat44_ed_output_interface_details (cursor, rp, mp->context); }));
472 vl_api_nat44_add_del_static_mapping_t_handler
473 (vl_api_nat44_add_del_static_mapping_t * mp)
475 vl_api_nat44_add_del_static_mapping_reply_t *rmp;
477 snat_main_t *sm = &snat_main;
480 ip4_address_t l_addr, e_addr, pool_addr = { 0 };
481 u32 sw_if_index, flags = 0, vrf_id;
482 u16 l_port = 0, e_port = 0;
483 ip_protocol_t proto = 0;
486 memcpy (&l_addr.as_u8, mp->local_ip_address, 4);
488 if (mp->flags & NAT_API_IS_ADDR_ONLY)
490 flags |= NAT_SM_FLAG_ADDR_ONLY;
494 l_port = mp->local_port;
495 e_port = mp->external_port;
496 proto = mp->protocol;
499 if (mp->flags & NAT_API_IS_TWICE_NAT)
501 flags |= NAT_SM_FLAG_TWICE_NAT;
504 if (mp->flags & NAT_API_IS_SELF_TWICE_NAT)
506 flags |= NAT_SM_FLAG_SELF_TWICE_NAT;
509 if (mp->flags & NAT_API_IS_OUT2IN_ONLY)
511 flags |= NAT_SM_FLAG_OUT2IN_ONLY;
514 sw_if_index = clib_net_to_host_u32 (mp->external_sw_if_index);
515 if (sw_if_index != ~0)
517 flags |= NAT_SM_FLAG_SWITCH_ADDRESS;
521 memcpy (&e_addr.as_u8, mp->external_ip_address, 4);
524 vrf_id = clib_net_to_host_u32 (mp->vrf_id);
528 mp->tag[sizeof (mp->tag) - 1] = 0;
529 tag = format (0, "%s", mp->tag);
530 vec_terminate_c_string (tag);
532 rv = nat44_ed_add_static_mapping (l_addr, e_addr, l_port, e_port, proto,
533 vrf_id, sw_if_index, flags, pool_addr,
539 rv = nat44_ed_del_static_mapping (l_addr, e_addr, l_port, e_port, proto,
540 vrf_id, sw_if_index, flags);
542 REPLY_MACRO (VL_API_NAT44_ADD_DEL_STATIC_MAPPING_REPLY);
546 vl_api_nat44_add_del_static_mapping_v2_t_handler
547 (vl_api_nat44_add_del_static_mapping_v2_t * mp)
549 vl_api_nat44_add_del_static_mapping_v2_reply_t *rmp;
551 snat_main_t *sm = &snat_main;
554 ip4_address_t l_addr, e_addr, pool_addr;
555 u32 sw_if_index, flags = 0, vrf_id;
556 u16 l_port = 0, e_port = 0;
560 memcpy (&l_addr.as_u8, mp->local_ip_address, 4);
561 memcpy (&pool_addr.as_u8, mp->pool_ip_address, 4);
563 if (pool_addr.as_u32 != 0)
565 flags |= NAT_SM_FLAG_EXACT_ADDRESS;
568 if (mp->flags & NAT_API_IS_ADDR_ONLY)
570 flags |= NAT_SM_FLAG_ADDR_ONLY;
574 l_port = mp->local_port;
575 e_port = mp->external_port;
578 if (mp->flags & NAT_API_IS_TWICE_NAT)
580 flags |= NAT_SM_FLAG_TWICE_NAT;
583 if (mp->flags & NAT_API_IS_SELF_TWICE_NAT)
585 flags |= NAT_SM_FLAG_SELF_TWICE_NAT;
588 if (mp->flags & NAT_API_IS_OUT2IN_ONLY)
590 flags |= NAT_SM_FLAG_OUT2IN_ONLY;
593 sw_if_index = clib_net_to_host_u32 (mp->external_sw_if_index);
594 if (sw_if_index != ~0)
596 flags |= NAT_SM_FLAG_SWITCH_ADDRESS;
600 memcpy (&e_addr.as_u8, mp->external_ip_address, 4);
603 proto = mp->protocol;
604 vrf_id = clib_net_to_host_u32 (mp->vrf_id);
608 mp->tag[sizeof (mp->tag) - 1] = 0;
609 tag = format (0, "%s", mp->tag);
610 vec_terminate_c_string (tag);
612 rv = nat44_ed_add_static_mapping (l_addr, e_addr, l_port, e_port, proto,
613 vrf_id, sw_if_index, flags, pool_addr,
619 rv = nat44_ed_del_static_mapping (l_addr, e_addr, l_port, e_port, proto,
620 vrf_id, sw_if_index, flags);
622 REPLY_MACRO (VL_API_NAT44_ADD_DEL_STATIC_MAPPING_V2_REPLY);
626 send_nat44_static_mapping_details (snat_static_mapping_t * m,
627 vl_api_registration_t * reg, u32 context)
629 vl_api_nat44_static_mapping_details_t *rmp;
630 snat_main_t *sm = &snat_main;
631 u32 len = sizeof (*rmp);
633 rmp = vl_msg_api_alloc (len);
634 clib_memset (rmp, 0, len);
636 ntohs (VL_API_NAT44_STATIC_MAPPING_DETAILS + sm->msg_id_base);
638 clib_memcpy (rmp->local_ip_address, &(m->local_addr), 4);
639 clib_memcpy (rmp->external_ip_address, &(m->external_addr), 4);
640 rmp->external_sw_if_index = ~0;
641 rmp->vrf_id = htonl (m->vrf_id);
642 rmp->context = context;
644 // convert these in new api
646 if (is_sm_self_twice_nat (m->flags))
648 rmp->flags |= NAT_API_IS_SELF_TWICE_NAT;
651 if (is_sm_out2in_only (m->flags))
653 rmp->flags |= NAT_API_IS_OUT2IN_ONLY;
656 if (is_sm_twice_nat (m->flags))
658 rmp->flags |= NAT_API_IS_TWICE_NAT;
661 if (is_sm_addr_only (m->flags))
663 rmp->flags |= NAT_API_IS_ADDR_ONLY;
667 rmp->protocol = m->proto;
668 rmp->external_port = m->external_port;
669 rmp->local_port = m->local_port;
673 strncpy ((char *) rmp->tag, (char *) m->tag, vec_len (m->tag));
675 vl_api_send_msg (reg, (u8 *) rmp);
679 send_nat44_static_map_resolve_details (snat_static_mapping_resolve_t *m,
680 vl_api_registration_t *reg, u32 context)
682 vl_api_nat44_static_mapping_details_t *rmp;
683 snat_main_t *sm = &snat_main;
685 rmp = vl_msg_api_alloc (sizeof (*rmp));
686 clib_memset (rmp, 0, sizeof (*rmp));
688 ntohs (VL_API_NAT44_STATIC_MAPPING_DETAILS + sm->msg_id_base);
689 clib_memcpy (rmp->local_ip_address, &(m->l_addr), 4);
690 rmp->external_sw_if_index = htonl (m->sw_if_index);
691 rmp->vrf_id = htonl (m->vrf_id);
692 rmp->context = context;
694 if (is_sm_twice_nat (m->flags))
696 rmp->flags |= NAT_API_IS_TWICE_NAT;
699 if (is_sm_addr_only (m->flags))
701 rmp->flags |= NAT_API_IS_ADDR_ONLY;
705 rmp->protocol = m->proto;
706 rmp->external_port = m->e_port;
707 rmp->local_port = m->l_port;
711 strncpy ((char *) rmp->tag, (char *) m->tag, vec_len (m->tag));
713 vl_api_send_msg (reg, (u8 *) rmp);
717 vl_api_nat44_static_mapping_dump_t_handler (vl_api_nat44_static_mapping_dump_t
720 vl_api_registration_t *reg;
721 snat_main_t *sm = &snat_main;
722 snat_static_mapping_t *m;
723 snat_static_mapping_resolve_t *rp;
726 reg = vl_api_client_index_to_registration (mp->client_index);
730 pool_foreach (m, sm->static_mappings)
732 if (!is_sm_identity_nat (m->flags) && !is_sm_lb (m->flags))
733 send_nat44_static_mapping_details (m, reg, mp->context);
736 for (j = 0; j < vec_len (sm->sm_to_resolve); j++)
738 rp = sm->sm_to_resolve + j;
739 if (!is_sm_identity_nat (rp->flags))
740 send_nat44_static_map_resolve_details (rp, reg, mp->context);
745 vl_api_nat44_add_del_identity_mapping_t_handler
746 (vl_api_nat44_add_del_identity_mapping_t * mp)
748 vl_api_nat44_add_del_identity_mapping_reply_t *rmp;
750 snat_main_t *sm = &snat_main;
753 ip4_address_t addr, pool_addr = { 0 };
754 u32 sw_if_index, flags, vrf_id;
755 ip_protocol_t proto = 0;
759 flags = NAT_SM_FLAG_IDENTITY_NAT;
761 if (mp->flags & NAT_API_IS_ADDR_ONLY)
763 flags |= NAT_SM_FLAG_ADDR_ONLY;
768 proto = mp->protocol;
771 sw_if_index = clib_net_to_host_u32 (mp->sw_if_index);
772 if (sw_if_index != ~0)
774 flags |= NAT_SM_FLAG_SWITCH_ADDRESS;
778 memcpy (&addr.as_u8, mp->ip_address, 4);
781 vrf_id = clib_net_to_host_u32 (mp->vrf_id);
785 mp->tag[sizeof (mp->tag) - 1] = 0;
786 tag = format (0, "%s", mp->tag);
787 vec_terminate_c_string (tag);
789 rv = nat44_ed_add_static_mapping (addr, addr, port, port, proto, vrf_id,
790 sw_if_index, flags, pool_addr, tag);
795 rv = nat44_ed_del_static_mapping (addr, addr, port, port, proto, vrf_id,
798 REPLY_MACRO (VL_API_NAT44_ADD_DEL_IDENTITY_MAPPING_REPLY);
802 send_nat44_identity_mapping_details (snat_static_mapping_t * m, int index,
803 vl_api_registration_t * reg, u32 context)
805 vl_api_nat44_identity_mapping_details_t *rmp;
806 snat_main_t *sm = &snat_main;
807 nat44_lb_addr_port_t *local = pool_elt_at_index (m->locals, index);
809 rmp = vl_msg_api_alloc (sizeof (*rmp));
810 clib_memset (rmp, 0, sizeof (*rmp));
812 ntohs (VL_API_NAT44_IDENTITY_MAPPING_DETAILS + sm->msg_id_base);
814 if (is_sm_addr_only (m->flags))
815 rmp->flags |= NAT_API_IS_ADDR_ONLY;
817 clib_memcpy (rmp->ip_address, &(m->local_addr), 4);
818 rmp->port = m->local_port;
819 rmp->sw_if_index = ~0;
820 rmp->vrf_id = htonl (local->vrf_id);
821 rmp->protocol = m->proto;
822 rmp->context = context;
824 strncpy ((char *) rmp->tag, (char *) m->tag, vec_len (m->tag));
826 vl_api_send_msg (reg, (u8 *) rmp);
830 send_nat44_identity_map_resolve_details (snat_static_mapping_resolve_t *m,
831 vl_api_registration_t *reg,
834 vl_api_nat44_identity_mapping_details_t *rmp;
835 snat_main_t *sm = &snat_main;
837 rmp = vl_msg_api_alloc (sizeof (*rmp));
838 clib_memset (rmp, 0, sizeof (*rmp));
840 ntohs (VL_API_NAT44_IDENTITY_MAPPING_DETAILS + sm->msg_id_base);
842 if (is_sm_addr_only (m->flags))
843 rmp->flags = (vl_api_nat_config_flags_t) NAT_API_IS_ADDR_ONLY;
845 rmp->port = m->l_port;
846 rmp->sw_if_index = htonl (m->sw_if_index);
847 rmp->vrf_id = htonl (m->vrf_id);
848 rmp->protocol = m->proto;
849 rmp->context = context;
851 strncpy ((char *) rmp->tag, (char *) m->tag, vec_len (m->tag));
853 vl_api_send_msg (reg, (u8 *) rmp);
857 vl_api_nat44_identity_mapping_dump_t_handler
858 (vl_api_nat44_identity_mapping_dump_t * mp)
860 vl_api_registration_t *reg;
861 snat_main_t *sm = &snat_main;
862 snat_static_mapping_t *m;
863 snat_static_mapping_resolve_t *rp;
866 reg = vl_api_client_index_to_registration (mp->client_index);
870 pool_foreach (m, sm->static_mappings)
872 if (is_sm_identity_nat (m->flags) && !is_sm_lb (m->flags))
874 pool_foreach_index (j, m->locals)
876 send_nat44_identity_mapping_details (m, j, reg, mp->context);
881 for (j = 0; j < vec_len (sm->sm_to_resolve); j++)
883 rp = sm->sm_to_resolve + j;
884 if (is_sm_identity_nat (rp->flags))
885 send_nat44_identity_map_resolve_details (rp, reg, mp->context);
890 vl_api_nat44_add_del_interface_addr_t_handler
891 (vl_api_nat44_add_del_interface_addr_t * mp)
893 snat_main_t *sm = &snat_main;
894 vl_api_nat44_add_del_interface_addr_reply_t *rmp;
895 u32 sw_if_index = ntohl (mp->sw_if_index);
899 VALIDATE_SW_IF_INDEX (mp);
901 twice_nat = mp->flags & NAT_API_IS_TWICE_NAT;
905 rv = nat44_ed_add_interface_address (sw_if_index, twice_nat);
909 rv = nat44_ed_del_interface_address (sw_if_index, twice_nat);
912 BAD_SW_IF_INDEX_LABEL;
914 REPLY_MACRO (VL_API_NAT44_ADD_DEL_INTERFACE_ADDR_REPLY);
918 send_nat44_interface_addr_details (u32 sw_if_index,
919 vl_api_registration_t * reg, u32 context,
922 vl_api_nat44_interface_addr_details_t *rmp;
923 snat_main_t *sm = &snat_main;
925 rmp = vl_msg_api_alloc (sizeof (*rmp));
926 clib_memset (rmp, 0, sizeof (*rmp));
928 ntohs (VL_API_NAT44_INTERFACE_ADDR_DETAILS + sm->msg_id_base);
929 rmp->sw_if_index = ntohl (sw_if_index);
932 rmp->flags = (vl_api_nat_config_flags_t) NAT_API_IS_TWICE_NAT;
933 rmp->context = context;
935 vl_api_send_msg (reg, (u8 *) rmp);
939 vl_api_nat44_interface_addr_dump_t_handler (vl_api_nat44_interface_addr_dump_t
942 snat_main_t *sm = &snat_main;
943 vl_api_registration_t *reg;
944 snat_address_resolve_t *ap;
946 reg = vl_api_client_index_to_registration (mp->client_index);
950 vec_foreach (ap, sm->addr_to_resolve)
952 send_nat44_interface_addr_details (ap->sw_if_index, reg, mp->context,
957 static nat44_lb_addr_port_t *
958 unformat_nat44_lb_addr_port (vl_api_nat44_lb_addr_port_t *addr_port_pairs,
959 u32 addr_port_pair_num)
962 nat44_lb_addr_port_t *lb_addr_port_pairs = 0, lb_addr_port;
963 vl_api_nat44_lb_addr_port_t *ap;
965 for (i = 0; i < addr_port_pair_num; i++)
967 ap = &addr_port_pairs[i];
968 clib_memset (&lb_addr_port, 0, sizeof (lb_addr_port));
969 clib_memcpy (&lb_addr_port.addr, ap->addr, 4);
970 lb_addr_port.port = ap->port;
971 lb_addr_port.probability = ap->probability;
972 lb_addr_port.vrf_id = clib_net_to_host_u32 (ap->vrf_id);
973 vec_add1 (lb_addr_port_pairs, lb_addr_port);
976 return lb_addr_port_pairs;
980 vl_api_nat44_add_del_lb_static_mapping_t_handler (
981 vl_api_nat44_add_del_lb_static_mapping_t *mp)
983 snat_main_t *sm = &snat_main;
984 vl_api_nat44_add_del_lb_static_mapping_reply_t *rmp;
985 nat44_lb_addr_port_t *locals = 0;
986 ip4_address_t e_addr;
992 locals = unformat_nat44_lb_addr_port (mp->locals,
993 clib_net_to_host_u32 (mp->local_num));
994 clib_memcpy (&e_addr, mp->external_addr, 4);
995 proto = mp->protocol;
997 if (mp->flags & NAT_API_IS_TWICE_NAT)
999 flags |= NAT_SM_FLAG_TWICE_NAT;
1001 else if (mp->flags & NAT_API_IS_SELF_TWICE_NAT)
1003 flags |= NAT_SM_FLAG_SELF_TWICE_NAT;
1006 if (mp->flags & NAT_API_IS_OUT2IN_ONLY)
1008 flags |= NAT_SM_FLAG_OUT2IN_ONLY;
1013 mp->tag[sizeof (mp->tag) - 1] = 0;
1014 tag = format (0, "%s", mp->tag);
1015 vec_terminate_c_string (tag);
1017 rv = nat44_ed_add_lb_static_mapping (
1018 e_addr, mp->external_port, proto, locals, flags, tag,
1019 clib_net_to_host_u32 (mp->affinity));
1023 rv = nat44_ed_del_lb_static_mapping (e_addr, mp->external_port, proto,
1029 REPLY_MACRO (VL_API_NAT44_ADD_DEL_LB_STATIC_MAPPING_REPLY);
1033 vl_api_nat44_lb_static_mapping_add_del_local_t_handler (
1034 vl_api_nat44_lb_static_mapping_add_del_local_t *mp)
1036 snat_main_t *sm = &snat_main;
1037 vl_api_nat44_lb_static_mapping_add_del_local_reply_t *rmp;
1039 ip4_address_t e_addr, l_addr;
1040 ip_protocol_t proto;
1042 clib_memcpy (&e_addr, mp->external_addr, 4);
1043 clib_memcpy (&l_addr, mp->local.addr, 4);
1044 proto = mp->protocol;
1046 rv = nat44_ed_add_del_lb_static_mapping_local (
1047 e_addr, mp->external_port, l_addr, mp->local.port, proto,
1048 clib_net_to_host_u32 (mp->local.vrf_id), mp->local.probability,
1051 REPLY_MACRO (VL_API_NAT44_LB_STATIC_MAPPING_ADD_DEL_LOCAL_REPLY);
1055 send_nat44_lb_static_mapping_details (snat_static_mapping_t *m,
1056 vl_api_registration_t *reg, u32 context)
1058 vl_api_nat44_lb_static_mapping_details_t *rmp;
1059 snat_main_t *sm = &snat_main;
1060 nat44_lb_addr_port_t *ap;
1061 vl_api_nat44_lb_addr_port_t *locals;
1064 rmp = vl_msg_api_alloc (
1065 sizeof (*rmp) + (pool_elts (m->locals) * sizeof (nat44_lb_addr_port_t)));
1067 clib_memset (rmp, 0, sizeof (*rmp));
1069 ntohs (VL_API_NAT44_LB_STATIC_MAPPING_DETAILS + sm->msg_id_base);
1071 clib_memcpy (rmp->external_addr, &(m->external_addr), 4);
1072 rmp->external_port = m->external_port;
1073 rmp->protocol = m->proto;
1074 rmp->context = context;
1076 if (is_sm_self_twice_nat (m->flags))
1078 rmp->flags |= NAT_API_IS_SELF_TWICE_NAT;
1081 if (is_sm_out2in_only (m->flags))
1083 rmp->flags |= NAT_API_IS_OUT2IN_ONLY;
1086 if (is_sm_twice_nat (m->flags))
1088 rmp->flags |= NAT_API_IS_TWICE_NAT;
1092 strncpy ((char *) rmp->tag, (char *) m->tag, vec_len (m->tag));
1094 locals = (vl_api_nat44_lb_addr_port_t *) rmp->locals;
1095 pool_foreach (ap, m->locals)
1097 clib_memcpy (locals->addr, &(ap->addr), 4);
1098 locals->port = ap->port;
1099 locals->probability = ap->probability;
1100 locals->vrf_id = ntohl (ap->vrf_id);
1104 rmp->local_num = ntohl (local_num);
1106 vl_api_send_msg (reg, (u8 *) rmp);
1110 vl_api_nat44_lb_static_mapping_dump_t_handler (
1111 vl_api_nat44_lb_static_mapping_dump_t *mp)
1113 vl_api_registration_t *reg;
1114 snat_main_t *sm = &snat_main;
1115 snat_static_mapping_t *m;
1117 reg = vl_api_client_index_to_registration (mp->client_index);
1121 pool_foreach (m, sm->static_mappings)
1123 if (is_sm_lb (m->flags))
1124 send_nat44_lb_static_mapping_details (m, reg, mp->context);
1129 vl_api_nat44_del_session_t_handler (vl_api_nat44_del_session_t *mp)
1131 snat_main_t *sm = &snat_main;
1132 vl_api_nat44_del_session_reply_t *rmp;
1133 ip4_address_t addr, eh_addr;
1139 memcpy (&addr.as_u8, mp->address, 4);
1141 vrf_id = clib_net_to_host_u32 (mp->vrf_id);
1142 memcpy (&eh_addr.as_u8, mp->ext_host_address, 4);
1143 eh_port = mp->ext_host_port;
1145 is_in = mp->flags & NAT_API_IS_INSIDE;
1147 rv = nat44_ed_del_session (sm, &addr, port, &eh_addr, eh_port, mp->protocol,
1150 REPLY_MACRO (VL_API_NAT44_DEL_SESSION_REPLY);
1154 vl_api_nat44_forwarding_enable_disable_t_handler (
1155 vl_api_nat44_forwarding_enable_disable_t *mp)
1157 vl_api_nat44_forwarding_enable_disable_reply_t *rmp;
1158 snat_main_t *sm = &snat_main;
1160 nat44_ed_forwarding_enable_disable (mp->enable);
1161 REPLY_MACRO (VL_API_NAT44_FORWARDING_ENABLE_DISABLE_REPLY);
1165 vl_api_nat44_show_running_config_t_handler (
1166 vl_api_nat44_show_running_config_t *mp)
1168 vl_api_nat44_show_running_config_reply_t *rmp;
1169 snat_main_t *sm = &snat_main;
1170 nat44_config_t *rc = &sm->rconfig;
1174 VL_API_NAT44_SHOW_RUNNING_CONFIG_REPLY, ({
1175 rmp->inside_vrf = htonl (rc->inside_vrf);
1176 rmp->outside_vrf = htonl (rc->outside_vrf);
1178 rmp->sessions = htonl (rc->sessions);
1179 rmp->translation_buckets = htonl (sm->translation_buckets);
1183 rmp->user_buckets = 0;
1184 rmp->user_sessions = 0;
1186 rmp->timeouts.udp = htonl (sm->timeouts.udp);
1187 rmp->timeouts.tcp_established = htonl (sm->timeouts.tcp.established);
1188 rmp->timeouts.tcp_transitory = htonl (sm->timeouts.tcp.transitory);
1189 rmp->timeouts.icmp = htonl (sm->timeouts.icmp);
1191 rmp->forwarding_enabled = sm->forwarding_enabled == 1;
1192 // consider how to split functionality between subplugins
1193 rmp->ipfix_logging_enabled = nat_ipfix_logging_enabled ();
1194 rmp->flags |= NAT44_IS_ENDPOINT_DEPENDENT;
1199 vl_api_nat44_ed_add_del_vrf_table_t_handler (
1200 vl_api_nat44_ed_add_del_vrf_table_t *mp)
1202 snat_main_t *sm = &snat_main;
1203 vl_api_nat44_ed_add_del_vrf_table_reply_t *rmp;
1204 int rv = nat44_ed_add_del_vrf_table (clib_net_to_host_u32 (mp->table_vrf_id),
1206 REPLY_MACRO (VL_API_NAT44_ED_ADD_DEL_VRF_TABLE_REPLY);
1210 vl_api_nat44_ed_add_del_vrf_route_t_handler (
1211 vl_api_nat44_ed_add_del_vrf_route_t *mp)
1213 snat_main_t *sm = &snat_main;
1214 vl_api_nat44_ed_add_del_vrf_route_reply_t *rmp;
1216 nat44_ed_add_del_vrf_route (clib_net_to_host_u32 (mp->table_vrf_id),
1217 clib_net_to_host_u32 (mp->vrf_id), mp->is_add);
1218 REPLY_MACRO (VL_API_NAT44_ED_ADD_DEL_VRF_ROUTE_REPLY);
1222 nat44_ed_vrf_tables_send_details (vl_api_registration_t *rp, u32 context,
1225 snat_main_t *sm = &snat_main;
1226 vl_api_nat44_ed_vrf_tables_details_t *mp;
1231 mp = vl_msg_api_alloc_zero (sizeof (*mp) +
1232 sizeof (mp->vrf_ids[0]) * vec_len (t->routes));
1234 ntohs (VL_API_NAT44_ED_VRF_TABLES_DETAILS + sm->msg_id_base);
1235 mp->context = context;
1236 mp->n_vrf_ids = clib_host_to_net_u32 (vec_len (t->routes));
1238 pool_foreach (r, t->routes)
1240 vec_add1 (vrf_ids, r->vrf_id);
1244 clib_memcpy (mp->vrf_ids, vrf_ids,
1245 sizeof (mp->vrf_ids[0]) * vec_len (t->routes));
1250 vl_api_send_msg (rp, (u8 *) mp);
1254 nat44_ed_vrf_tables_send_details_v2 (vl_api_registration_t *rp, u32 context,
1257 snat_main_t *sm = &snat_main;
1258 vl_api_nat44_ed_vrf_tables_v2_details_t *mp;
1263 mp = vl_msg_api_alloc_zero (sizeof (*mp) +
1264 sizeof (mp->vrf_ids[0]) * vec_len (t->routes));
1265 mp->_vl_msg_id = clib_net_to_host_u16 (VL_API_NAT44_ED_VRF_TABLES_DETAILS +
1267 mp->context = context;
1268 mp->n_vrf_ids = clib_net_to_host_u32 (vec_len (t->routes));
1269 mp->table_vrf_id = clib_net_to_host_u32 (t->table_vrf_id);
1270 pool_foreach (r, t->routes)
1272 vec_add1 (vrf_ids, clib_net_to_host_u32 (r->vrf_id));
1276 clib_memcpy (mp->vrf_ids, vrf_ids,
1277 sizeof (mp->vrf_ids[0]) * vec_len (t->routes));
1282 vl_api_send_msg (rp, (u8 *) mp);
1286 vl_api_nat44_ed_vrf_tables_dump_t_handler (
1287 vl_api_nat44_ed_vrf_tables_dump_t *mp)
1289 snat_main_t *sm = &snat_main;
1290 vl_api_registration_t *rp;
1293 rp = vl_api_client_index_to_registration (mp->client_index);
1297 pool_foreach (t, sm->vrf_tables)
1299 nat44_ed_vrf_tables_send_details (rp, mp->context, t);
1304 vl_api_nat44_ed_vrf_tables_v2_dump_t_handler (
1305 vl_api_nat44_ed_vrf_tables_v2_dump_t *mp)
1307 snat_main_t *sm = &snat_main;
1308 vl_api_registration_t *rp;
1311 rp = vl_api_client_index_to_registration (mp->client_index);
1315 pool_foreach (t, sm->vrf_tables)
1317 nat44_ed_vrf_tables_send_details_v2 (rp, mp->context, t);
1321 /* user (internal host) key */
1340 u32 nstaticsessions;
1347 clib_bihash_8_8_t user_hash;
1348 } user_create_helper_t;
1351 send_nat44_user_details (snat_user_t *u, vl_api_registration_t *reg,
1354 vl_api_nat44_user_details_t *rmp;
1355 snat_main_t *sm = &snat_main;
1356 ip4_main_t *im = &ip4_main;
1358 rmp = vl_msg_api_alloc (sizeof (*rmp));
1359 clib_memset (rmp, 0, sizeof (*rmp));
1360 rmp->_vl_msg_id = ntohs (VL_API_NAT44_USER_DETAILS + sm->msg_id_base);
1362 if (!pool_is_free_index (im->fibs, u->fib_index))
1364 fib_table_t *fib = fib_table_get (u->fib_index, FIB_PROTOCOL_IP4);
1365 rmp->vrf_id = ntohl (fib->ft_table_id);
1368 clib_memcpy (rmp->ip_address, &(u->addr), 4);
1369 rmp->nsessions = ntohl (u->nsessions);
1370 rmp->nstaticsessions = ntohl (u->nstaticsessions);
1371 rmp->context = context;
1373 vl_api_send_msg (reg, (u8 *) rmp);
1377 nat_ed_user_create_helper (user_create_helper_t *uch, snat_session_t *s)
1380 k.addr = s->in2out.addr;
1381 k.fib_index = s->in2out.fib_index;
1382 clib_bihash_kv_8_8_t key, value;
1386 if (clib_bihash_search_8_8 (&uch->user_hash, &key, &value))
1388 pool_get (uch->users, u);
1390 u->fib_index = k.fib_index;
1392 u->nstaticsessions = 0;
1393 key.value = u - uch->users;
1394 clib_bihash_add_del_8_8 (&uch->user_hash, &key, 1);
1398 u = pool_elt_at_index (uch->users, value.value);
1400 if (nat44_ed_is_session_static (s))
1402 ++u->nstaticsessions;
1411 format_user_kvp (u8 *s, va_list *args)
1413 clib_bihash_kv_8_8_t *v = va_arg (*args, clib_bihash_kv_8_8_t *);
1416 s = format (s, "%U fib %d user-index %llu", format_ip4_address, &k.addr,
1417 k.fib_index, v->value);
1422 nat_ed_users_create (snat_main_per_thread_data_t *tsm,
1423 user_create_helper_t *uch)
1426 clib_bihash_init_8_8 (&uch->user_hash, "users", uch->user_buckets, 0);
1427 clib_bihash_set_kvp_format_fn_8_8 (&uch->user_hash, format_user_kvp);
1428 pool_foreach (s, tsm->sessions)
1430 nat_ed_user_create_helper (uch, s);
1435 nat_ed_users_destroy (user_create_helper_t *uch)
1437 pool_free (uch->users);
1438 clib_bihash_free_8_8 (&uch->user_hash);
1442 vl_api_nat44_user_dump_t_handler (vl_api_nat44_user_dump_t * mp)
1444 user_create_helper_t uch;
1445 vl_api_registration_t *reg;
1446 snat_main_t *sm = &snat_main;
1447 snat_main_per_thread_data_t *tsm;
1450 clib_memset (&uch, 0, sizeof (uch));
1452 uch.user_buckets = nat_calc_bihash_buckets (1024);
1454 reg = vl_api_client_index_to_registration (mp->client_index);
1458 vec_foreach (tsm, sm->per_thread_data)
1460 nat_ed_users_create (tsm, &uch);
1461 pool_foreach (u, uch.users)
1463 send_nat44_user_details (u, reg, mp->context);
1465 nat_ed_users_destroy (&uch);
1470 send_nat44_user_session_details (snat_session_t * s,
1471 vl_api_registration_t * reg, u32 context)
1473 vl_api_nat44_user_session_details_t *rmp;
1474 snat_main_t *sm = &snat_main;
1476 rmp = vl_msg_api_alloc (sizeof (*rmp));
1477 clib_memset (rmp, 0, sizeof (*rmp));
1479 ntohs (VL_API_NAT44_USER_SESSION_DETAILS + sm->msg_id_base);
1480 clib_memcpy (rmp->outside_ip_address, (&s->out2in.addr), 4);
1481 clib_memcpy (rmp->inside_ip_address, (&s->in2out.addr), 4);
1483 if (nat44_ed_is_session_static (s))
1484 rmp->flags |= NAT_API_IS_STATIC;
1486 if (nat44_ed_is_twice_nat_session (s))
1487 rmp->flags |= NAT_API_IS_TWICE_NAT;
1489 rmp->flags |= NAT_API_IS_EXT_HOST_VALID;
1491 rmp->last_heard = clib_host_to_net_u64 ((u64) s->last_heard);
1492 rmp->total_bytes = clib_host_to_net_u64 (s->total_bytes);
1493 rmp->total_pkts = ntohl (s->total_pkts);
1494 rmp->context = context;
1495 rmp->outside_port = s->out2in.port;
1496 rmp->inside_port = s->in2out.port;
1497 rmp->protocol = clib_host_to_net_u16 (s->proto);
1498 clib_memcpy (rmp->ext_host_address, &s->ext_host_addr, 4);
1499 rmp->ext_host_port = s->ext_host_port;
1500 if (nat44_ed_is_twice_nat_session (s))
1502 clib_memcpy (rmp->ext_host_nat_address, &s->ext_host_nat_addr, 4);
1503 rmp->ext_host_nat_port = s->ext_host_nat_port;
1506 vl_api_send_msg (reg, (u8 *) rmp);
1510 vl_api_nat44_user_session_dump_t_handler (vl_api_nat44_user_session_dump_t *
1513 snat_main_per_thread_data_t *tsm;
1514 snat_main_t *sm = &snat_main;
1515 vl_api_registration_t *reg;
1516 snat_user_key_t ukey;
1520 reg = vl_api_client_index_to_registration (mp->client_index);
1524 clib_memcpy (&ukey.addr, mp->ip_address, 4);
1525 ip.src_address.as_u32 = ukey.addr.as_u32;
1526 ukey.fib_index = fib_table_find (FIB_PROTOCOL_IP4, ntohl (mp->vrf_id));
1527 if (sm->num_workers > 1)
1528 tsm = vec_elt_at_index (
1529 sm->per_thread_data,
1530 nat44_ed_get_in2out_worker_index (0, &ip, ukey.fib_index, 0));
1532 tsm = vec_elt_at_index (sm->per_thread_data, sm->num_workers);
1534 pool_foreach (s, tsm->sessions) {
1535 if (s->in2out.addr.as_u32 == ukey.addr.as_u32)
1537 send_nat44_user_session_details (s, reg, mp->context);
1543 send_nat44_user_session_v2_details (snat_session_t *s,
1544 vl_api_registration_t *reg, u32 context)
1546 vl_api_nat44_user_session_v2_details_t *rmp;
1547 snat_main_t *sm = &snat_main;
1548 vnet_main_t *vnm = vnet_get_main ();
1549 u64 now = vlib_time_now (vnm->vlib_main);
1550 u64 sess_timeout_time = 0;
1552 rmp = vl_msg_api_alloc (sizeof (*rmp));
1553 clib_memset (rmp, 0, sizeof (*rmp));
1555 ntohs (VL_API_NAT44_USER_SESSION_V2_DETAILS + sm->msg_id_base);
1556 clib_memcpy (rmp->outside_ip_address, (&s->out2in.addr), 4);
1557 clib_memcpy (rmp->inside_ip_address, (&s->in2out.addr), 4);
1559 if (nat44_ed_is_session_static (s))
1560 rmp->flags |= NAT_API_IS_STATIC;
1562 if (nat44_ed_is_twice_nat_session (s))
1563 rmp->flags |= NAT_API_IS_TWICE_NAT;
1565 rmp->flags |= NAT_API_IS_EXT_HOST_VALID;
1567 rmp->last_heard = clib_host_to_net_u64 ((u64) s->last_heard);
1568 rmp->total_bytes = clib_host_to_net_u64 (s->total_bytes);
1569 rmp->total_pkts = ntohl (s->total_pkts);
1570 rmp->context = context;
1571 rmp->outside_port = s->out2in.port;
1572 rmp->inside_port = s->in2out.port;
1573 rmp->protocol = clib_host_to_net_u16 (s->proto);
1574 clib_memcpy (rmp->ext_host_address, &s->ext_host_addr, 4);
1575 rmp->ext_host_port = s->ext_host_port;
1576 if (nat44_ed_is_twice_nat_session (s))
1578 clib_memcpy (rmp->ext_host_nat_address, &s->ext_host_nat_addr, 4);
1579 rmp->ext_host_nat_port = s->ext_host_nat_port;
1582 sess_timeout_time = s->last_heard + nat44_session_get_timeout (sm, s);
1583 rmp->is_timed_out = (now >= sess_timeout_time);
1585 vl_api_send_msg (reg, (u8 *) rmp);
1589 send_nat44_user_session_v3_details (snat_session_t *s,
1590 vl_api_registration_t *reg, u32 context)
1592 vl_api_nat44_user_session_v3_details_t *rmp;
1593 snat_main_t *sm = &snat_main;
1594 u64 now = vlib_time_now (vlib_get_main ());
1595 u64 sess_timeout_time = 0;
1597 rmp = vl_msg_api_alloc (sizeof (*rmp));
1598 clib_memset (rmp, 0, sizeof (*rmp));
1600 ntohs (VL_API_NAT44_USER_SESSION_V3_DETAILS + sm->msg_id_base);
1601 clib_memcpy (rmp->outside_ip_address, (&s->out2in.addr), 4);
1602 clib_memcpy (rmp->inside_ip_address, (&s->in2out.addr), 4);
1604 if (nat44_ed_is_session_static (s))
1605 rmp->flags |= NAT_API_IS_STATIC;
1607 if (nat44_ed_is_twice_nat_session (s))
1608 rmp->flags |= NAT_API_IS_TWICE_NAT;
1610 rmp->flags |= NAT_API_IS_EXT_HOST_VALID;
1612 rmp->last_heard = clib_host_to_net_u64 ((u64) s->last_heard);
1613 rmp->time_since_last_heard =
1614 clib_host_to_net_u64 ((u64) (now - s->last_heard));
1615 rmp->total_bytes = clib_host_to_net_u64 (s->total_bytes);
1616 rmp->total_pkts = ntohl (s->total_pkts);
1617 rmp->context = context;
1618 rmp->outside_port = s->out2in.port;
1619 rmp->inside_port = s->in2out.port;
1620 rmp->protocol = clib_host_to_net_u16 (s->proto);
1621 clib_memcpy (rmp->ext_host_address, &s->ext_host_addr, 4);
1622 rmp->ext_host_port = s->ext_host_port;
1623 if (nat44_ed_is_twice_nat_session (s))
1625 clib_memcpy (rmp->ext_host_nat_address, &s->ext_host_nat_addr, 4);
1626 rmp->ext_host_nat_port = s->ext_host_nat_port;
1629 sess_timeout_time = s->last_heard + nat44_session_get_timeout (sm, s);
1630 rmp->is_timed_out = (now >= sess_timeout_time);
1632 vl_api_send_msg (reg, (u8 *) rmp);
1636 vl_api_nat44_user_session_v2_dump_t_handler (
1637 vl_api_nat44_user_session_v2_dump_t *mp)
1639 snat_main_per_thread_data_t *tsm;
1640 snat_main_t *sm = &snat_main;
1641 vl_api_registration_t *reg;
1642 snat_user_key_t ukey;
1646 reg = vl_api_client_index_to_registration (mp->client_index);
1650 clib_memcpy (&ukey.addr, mp->ip_address, 4);
1651 ip.src_address.as_u32 = ukey.addr.as_u32;
1652 ukey.fib_index = fib_table_find (FIB_PROTOCOL_IP4, ntohl (mp->vrf_id));
1653 if (sm->num_workers > 1)
1654 tsm = vec_elt_at_index (
1655 sm->per_thread_data,
1656 nat44_ed_get_in2out_worker_index (0, &ip, ukey.fib_index, 0));
1658 tsm = vec_elt_at_index (sm->per_thread_data, sm->num_workers);
1660 pool_foreach (s, tsm->sessions)
1662 if (s->in2out.addr.as_u32 == ukey.addr.as_u32)
1664 send_nat44_user_session_v2_details (s, reg, mp->context);
1670 vl_api_nat44_user_session_v3_dump_t_handler (
1671 vl_api_nat44_user_session_v3_dump_t *mp)
1673 snat_main_per_thread_data_t *tsm;
1674 snat_main_t *sm = &snat_main;
1675 vl_api_registration_t *reg;
1676 snat_user_key_t ukey;
1680 reg = vl_api_client_index_to_registration (mp->client_index);
1684 clib_memcpy (&ukey.addr, mp->ip_address, 4);
1685 ip.src_address.as_u32 = ukey.addr.as_u32;
1686 ukey.fib_index = fib_table_find (FIB_PROTOCOL_IP4, ntohl (mp->vrf_id));
1687 if (sm->num_workers > 1)
1688 tsm = vec_elt_at_index (
1689 sm->per_thread_data,
1690 nat44_ed_get_in2out_worker_index (0, &ip, ukey.fib_index, 0));
1692 tsm = vec_elt_at_index (sm->per_thread_data, sm->num_workers);
1694 pool_foreach (s, tsm->sessions)
1696 if (s->in2out.addr.as_u32 == ukey.addr.as_u32)
1698 send_nat44_user_session_v3_details (s, reg, mp->context);
1703 /* API definitions */
1704 #include <vnet/format_fns.h>
1705 #include <nat/nat44-ed/nat44_ed.api.c>
1707 /* Set up the API message handling tables */
1709 nat44_api_hookup (vlib_main_t * vm)
1711 snat_main_t *sm = &snat_main;
1712 sm->msg_id_base = setup_message_id_table ();
1717 * fd.io coding-style-patch-verification: ON
1720 * eval: (c-set-style "gnu")
Code Review / vpp.git / blob