2 * Copyright (c) 2017 Cisco and/or its affiliates.
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at:
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
18 * @brief NAT plugin API implementation
22 #include <nat/nat_det.h>
23 #include <nat/nat64.h>
24 #include <nat/nat66.h>
25 #include <nat/dslite.h>
26 #include <nat/nat_reass.h>
27 #include <vlibapi/api.h>
28 #include <vlibmemory/api.h>
30 #include <nat/nat_msg_enum.h>
31 #include <vnet/fib/fib_table.h>
33 #define vl_api_nat44_lb_addr_port_t_endian vl_noop_handler
34 #define vl_api_nat44_add_del_lb_static_mapping_t_endian vl_noop_handler
35 #define vl_api_nat44_nat44_lb_static_mapping_details_t_endian vl_noop_handler
37 /* define message structures */
39 #include <nat/nat_all_api_h.h>
42 /* define generated endian-swappers */
44 #include <nat/nat_all_api_h.h>
47 #define vl_print(handle, ...) vlib_cli_output (handle, __VA_ARGS__)
49 #define REPLY_MSG_ID_BASE sm->msg_id_base
50 #include <vlibapi/api_helper_macros.h>
52 /* Get the API version number */
53 #define vl_api_version(n,v) static u32 api_version=(v);
54 #include <nat/nat_all_api_h.h>
57 /* Macro to finish up custom dump fns */
60 vl_print (handle, (char *)s); \
65 /******************************/
66 /*** Common NAT plugin APIs ***/
67 /******************************/
70 vl_api_nat_control_ping_t_handler (vl_api_nat_control_ping_t * mp)
72 vl_api_nat_control_ping_reply_t *rmp;
73 snat_main_t *sm = &snat_main;
77 REPLY_MACRO2 (VL_API_NAT_CONTROL_PING_REPLY,
79 rmp->vpe_pid = ntohl (getpid ());
85 vl_api_nat_control_ping_t_print (vl_api_nat_control_ping_t * mp, void *handle)
89 s = format (0, "SCRIPT: nat_control_ping ");
95 vl_api_nat_show_config_t_handler (vl_api_nat_show_config_t * mp)
97 vl_api_nat_show_config_reply_t *rmp;
98 snat_main_t *sm = &snat_main;
102 REPLY_MACRO2 (VL_API_NAT_SHOW_CONFIG_REPLY,
104 rmp->translation_buckets = htonl (sm->translation_buckets);
105 rmp->translation_memory_size = htonl (sm->translation_memory_size);
106 rmp->user_buckets = htonl (sm->user_buckets);
107 rmp->user_memory_size = htonl (sm->user_memory_size);
108 rmp->max_translations_per_user = htonl (sm->max_translations_per_user);
109 rmp->outside_vrf_id = htonl (sm->outside_vrf_id);
110 rmp->inside_vrf_id = htonl (sm->inside_vrf_id);
111 rmp->static_mapping_only = sm->static_mapping_only;
112 rmp->static_mapping_connection_tracking =
113 sm->static_mapping_connection_tracking;
114 rmp->deterministic = sm->deterministic;
120 vl_api_nat_show_config_t_print (vl_api_nat_show_config_t * mp, void *handle)
124 s = format (0, "SCRIPT: nat_show_config ");
130 vl_api_nat_set_workers_t_handler (vl_api_nat_set_workers_t * mp)
132 snat_main_t *sm = &snat_main;
133 vl_api_nat_set_workers_reply_t *rmp;
138 if (sm->deterministic)
140 rv = VNET_API_ERROR_UNSUPPORTED;
144 mask = clib_net_to_host_u64 (mp->worker_mask);
146 if (sm->num_workers < 2)
148 rv = VNET_API_ERROR_FEATURE_DISABLED;
152 bitmap = clib_bitmap_set_multiple (bitmap, 0, mask, BITS (mask));
153 rv = snat_set_workers (bitmap);
154 clib_bitmap_free (bitmap);
157 REPLY_MACRO (VL_API_NAT_SET_WORKERS_REPLY);
161 vl_api_nat_set_workers_t_print (vl_api_nat_set_workers_t * mp, void *handle)
167 u64 mask = clib_net_to_host_u64 (mp->worker_mask);
169 s = format (0, "SCRIPT: nat_set_workers ");
170 bitmap = clib_bitmap_set_multiple (bitmap, 0, mask, BITS (mask));
172 clib_bitmap_foreach (i, bitmap,
175 s = format (s, "%d", i);
177 s = format (s, ",%d", i);
181 clib_bitmap_free (bitmap);
186 send_nat_worker_details (u32 worker_index, vl_api_registration_t * reg,
189 vl_api_nat_worker_details_t *rmp;
190 snat_main_t *sm = &snat_main;
191 vlib_worker_thread_t *w =
192 vlib_worker_threads + worker_index + sm->first_worker_index;
194 rmp = vl_msg_api_alloc (sizeof (*rmp));
195 memset (rmp, 0, sizeof (*rmp));
196 rmp->_vl_msg_id = ntohs (VL_API_NAT_WORKER_DETAILS + sm->msg_id_base);
197 rmp->context = context;
198 rmp->worker_index = htonl (worker_index);
199 rmp->lcore_id = htonl (w->lcore_id);
200 strncpy ((char *) rmp->name, (char *) w->name, ARRAY_LEN (rmp->name) - 1);
202 vl_api_send_msg (reg, (u8 *) rmp);
206 vl_api_nat_worker_dump_t_handler (vl_api_nat_worker_dump_t * mp)
208 vl_api_registration_t *reg;
209 snat_main_t *sm = &snat_main;
212 if (sm->deterministic)
215 reg = vl_api_client_index_to_registration (mp->client_index);
220 vec_foreach (worker_index, sm->workers)
221 send_nat_worker_details(*worker_index, reg, mp->context);
226 vl_api_nat_worker_dump_t_print (vl_api_nat_worker_dump_t * mp, void *handle)
230 s = format (0, "SCRIPT: nat_worker_dump ");
236 vl_api_nat_ipfix_enable_disable_t_handler (vl_api_nat_ipfix_enable_disable_t *
239 snat_main_t *sm = &snat_main;
240 vl_api_nat_ipfix_enable_disable_reply_t *rmp;
243 rv = snat_ipfix_logging_enable_disable (mp->enable,
249 REPLY_MACRO (VL_API_NAT_IPFIX_ENABLE_DISABLE_REPLY);
253 vl_api_nat_ipfix_enable_disable_t_print (vl_api_nat_ipfix_enable_disable_t *
258 s = format (0, "SCRIPT: nat_ipfix_enable_disable ");
260 s = format (s, "domain %d ", clib_net_to_host_u32 (mp->domain_id));
262 s = format (s, "src_port %d ", clib_net_to_host_u16 (mp->src_port));
264 s = format (s, "disable ");
270 vl_api_nat_set_reass_t_handler (vl_api_nat_set_reass_t * mp)
272 snat_main_t *sm = &snat_main;
273 vl_api_nat_set_reass_reply_t *rmp;
277 nat_reass_set (ntohl (mp->timeout), ntohs (mp->max_reass), mp->max_frag,
278 mp->drop_frag, mp->is_ip6);
280 REPLY_MACRO (VL_API_NAT_SET_REASS_REPLY);
284 vl_api_nat_set_reass_t_print (vl_api_nat_set_reass_t * mp, void *handle)
288 s = format (0, "SCRIPT: nat_set_reass ");
289 s = format (s, "timeout %d max_reass %d max_frag %d drop_frag %d is_ip6 %d",
290 clib_host_to_net_u32 (mp->timeout),
291 clib_host_to_net_u16 (mp->max_reass),
292 mp->max_frag, mp->drop_frag, mp->is_ip6);
298 vl_api_nat_get_reass_t_handler (vl_api_nat_get_reass_t * mp)
300 snat_main_t *sm = &snat_main;
301 vl_api_nat_get_reass_reply_t *rmp;
305 REPLY_MACRO2 (VL_API_NAT_GET_REASS_REPLY,
307 rmp->ip4_timeout = htonl (nat_reass_get_timeout(0));
308 rmp->ip4_max_reass = htons (nat_reass_get_max_reass(0));
309 rmp->ip4_max_frag = nat_reass_get_max_frag(0);
310 rmp->ip4_drop_frag = nat_reass_is_drop_frag(0);
311 rmp->ip6_timeout = htonl (nat_reass_get_timeout(1));
312 rmp->ip6_max_reass = htons (nat_reass_get_max_reass(1));
313 rmp->ip6_max_frag = nat_reass_get_max_frag(1);
314 rmp->ip6_drop_frag = nat_reass_is_drop_frag(1);
320 vl_api_nat_get_reass_t_print (vl_api_nat_get_reass_t * mp, void *handle)
324 s = format (0, "SCRIPT: nat_get_reass");
329 typedef struct nat_api_walk_ctx_t_
331 vl_api_registration_t *reg;
333 } nat_api_walk_ctx_t;
336 nat_ip4_reass_walk_api (nat_reass_ip4_t * reass, void *arg)
338 vl_api_nat_reass_details_t *rmp;
339 snat_main_t *sm = &snat_main;
340 nat_api_walk_ctx_t *ctx = arg;
342 rmp = vl_msg_api_alloc (sizeof (*rmp));
343 memset (rmp, 0, sizeof (*rmp));
344 rmp->_vl_msg_id = ntohs (VL_API_NAT_REASS_DETAILS + sm->msg_id_base);
345 rmp->context = ctx->context;
346 clib_memcpy (rmp->src_addr, &(reass->key.src), 4);
347 clib_memcpy (rmp->dst_addr, &(reass->key.dst), 4);
348 rmp->proto = reass->key.proto;
349 rmp->frag_id = ntohl (reass->key.frag_id);
350 rmp->frag_n = reass->frag_n;
353 vl_api_send_msg (ctx->reg, (u8 *) rmp);
359 nat_ip6_reass_walk_api (nat_reass_ip6_t * reass, void *arg)
361 vl_api_nat_reass_details_t *rmp;
362 snat_main_t *sm = &snat_main;
363 nat_api_walk_ctx_t *ctx = arg;
365 rmp = vl_msg_api_alloc (sizeof (*rmp));
366 memset (rmp, 0, sizeof (*rmp));
367 rmp->_vl_msg_id = ntohs (VL_API_NAT_REASS_DETAILS + sm->msg_id_base);
368 rmp->context = ctx->context;
369 clib_memcpy (rmp->src_addr, &(reass->key.src), 16);
370 clib_memcpy (rmp->dst_addr, &(reass->key.dst), 16);
371 rmp->proto = reass->key.proto;
372 rmp->frag_id = ntohl (reass->key.frag_id);
373 rmp->frag_n = reass->frag_n;
376 vl_api_send_msg (ctx->reg, (u8 *) rmp);
382 vl_api_nat_reass_dump_t_handler (vl_api_nat_reass_dump_t * mp)
384 vl_api_registration_t *reg;
386 reg = vl_api_client_index_to_registration (mp->client_index);
390 nat_api_walk_ctx_t ctx = {
392 .context = mp->context,
395 nat_ip4_reass_walk (nat_ip4_reass_walk_api, &ctx);
396 nat_ip6_reass_walk (nat_ip6_reass_walk_api, &ctx);
400 vl_api_nat_reass_dump_t_print (vl_api_nat_reass_dump_t * mp, void *handle)
404 s = format (0, "SCRIPT: nat_reass_dump");
413 vl_api_nat44_add_del_address_range_t_handler
414 (vl_api_nat44_add_del_address_range_t * mp)
416 snat_main_t *sm = &snat_main;
417 vl_api_nat44_add_del_address_range_reply_t *rmp;
418 ip4_address_t this_addr;
419 u32 start_host_order, end_host_order;
425 if (sm->deterministic)
427 rv = VNET_API_ERROR_UNSUPPORTED;
431 if (sm->static_mapping_only)
433 rv = VNET_API_ERROR_FEATURE_DISABLED;
437 tmp = (u32 *) mp->first_ip_address;
438 start_host_order = clib_host_to_net_u32 (tmp[0]);
439 tmp = (u32 *) mp->last_ip_address;
440 end_host_order = clib_host_to_net_u32 (tmp[0]);
442 count = (end_host_order - start_host_order) + 1;
444 vrf_id = clib_host_to_net_u32 (mp->vrf_id);
447 clib_warning ("%U - %U, %d addresses...",
448 format_ip4_address, mp->first_ip_address,
449 format_ip4_address, mp->last_ip_address, count);
451 memcpy (&this_addr.as_u8, mp->first_ip_address, 4);
453 for (i = 0; i < count; i++)
456 snat_add_address (sm, &this_addr, vrf_id, mp->twice_nat);
458 rv = snat_del_address (sm, this_addr, 0, mp->twice_nat);
464 nat44_add_del_address_dpo (this_addr, mp->is_add);
466 increment_v4_address (&this_addr);
470 REPLY_MACRO (VL_API_NAT44_ADD_DEL_ADDRESS_RANGE_REPLY);
473 static void *vl_api_nat44_add_del_address_range_t_print
474 (vl_api_nat44_add_del_address_range_t * mp, void *handle)
478 s = format (0, "SCRIPT: nat44_add_address_range ");
479 s = format (s, "%U ", format_ip4_address, mp->first_ip_address);
480 if (memcmp (mp->first_ip_address, mp->last_ip_address, 4))
482 s = format (s, " - %U ", format_ip4_address, mp->last_ip_address);
484 s = format (s, "twice_nat %d ", mp->twice_nat);
489 send_nat44_address_details (snat_address_t * a,
490 vl_api_registration_t * reg, u32 context,
493 vl_api_nat44_address_details_t *rmp;
494 snat_main_t *sm = &snat_main;
496 rmp = vl_msg_api_alloc (sizeof (*rmp));
497 memset (rmp, 0, sizeof (*rmp));
498 rmp->_vl_msg_id = ntohs (VL_API_NAT44_ADDRESS_DETAILS + sm->msg_id_base);
499 clib_memcpy (rmp->ip_address, &(a->addr), 4);
500 if (a->fib_index != ~0)
502 fib_table_t *fib = fib_table_get (a->fib_index, FIB_PROTOCOL_IP4);
503 rmp->vrf_id = ntohl (fib->ft_table_id);
507 rmp->twice_nat = twice_nat;
508 rmp->context = context;
510 vl_api_send_msg (reg, (u8 *) rmp);
514 vl_api_nat44_address_dump_t_handler (vl_api_nat44_address_dump_t * mp)
516 vl_api_registration_t *reg;
517 snat_main_t *sm = &snat_main;
520 if (sm->deterministic)
523 reg = vl_api_client_index_to_registration (mp->client_index);
528 vec_foreach (a, sm->addresses)
529 send_nat44_address_details (a, reg, mp->context, 0);
530 vec_foreach (a, sm->twice_nat_addresses)
531 send_nat44_address_details (a, reg, mp->context, 1);
536 vl_api_nat44_address_dump_t_print (vl_api_nat44_address_dump_t * mp,
541 s = format (0, "SCRIPT: nat44_address_dump ");
547 vl_api_nat44_interface_add_del_feature_t_handler
548 (vl_api_nat44_interface_add_del_feature_t * mp)
550 snat_main_t *sm = &snat_main;
551 vl_api_nat44_interface_add_del_feature_reply_t *rmp;
552 u8 is_del = mp->is_add == 0;
553 u32 sw_if_index = ntohl (mp->sw_if_index);
556 VALIDATE_SW_IF_INDEX (mp);
558 rv = snat_interface_add_del (sw_if_index, mp->is_inside, is_del);
560 BAD_SW_IF_INDEX_LABEL;
562 REPLY_MACRO (VL_API_NAT44_INTERFACE_ADD_DEL_FEATURE_REPLY);
565 static void *vl_api_nat44_interface_add_del_feature_t_print
566 (vl_api_nat44_interface_add_del_feature_t * mp, void *handle)
570 s = format (0, "SCRIPT: nat44_interface_add_del_feature ");
571 s = format (s, "sw_if_index %d %s %s",
572 clib_host_to_net_u32 (mp->sw_if_index),
573 mp->is_inside ? "in" : "out", mp->is_add ? "" : "del");
579 send_nat44_interface_details (snat_interface_t * i,
580 vl_api_registration_t * reg, u32 context)
582 vl_api_nat44_interface_details_t *rmp;
583 snat_main_t *sm = &snat_main;
585 rmp = vl_msg_api_alloc (sizeof (*rmp));
586 memset (rmp, 0, sizeof (*rmp));
587 rmp->_vl_msg_id = ntohs (VL_API_NAT44_INTERFACE_DETAILS + sm->msg_id_base);
588 rmp->sw_if_index = ntohl (i->sw_if_index);
589 rmp->is_inside = (nat_interface_is_inside (i)
590 && nat_interface_is_outside (i)) ? 2 :
591 nat_interface_is_inside (i);
592 rmp->context = context;
594 vl_api_send_msg (reg, (u8 *) rmp);
598 vl_api_nat44_interface_dump_t_handler (vl_api_nat44_interface_dump_t * mp)
600 vl_api_registration_t *reg;
601 snat_main_t *sm = &snat_main;
604 reg = vl_api_client_index_to_registration (mp->client_index);
609 pool_foreach (i, sm->interfaces,
611 send_nat44_interface_details(i, reg, mp->context);
617 vl_api_nat44_interface_dump_t_print (vl_api_nat44_interface_dump_t * mp,
622 s = format (0, "SCRIPT: nat44_interface_dump ");
628 vl_api_nat44_interface_add_del_output_feature_t_handler
629 (vl_api_nat44_interface_add_del_output_feature_t * mp)
631 snat_main_t *sm = &snat_main;
632 vl_api_nat44_interface_add_del_output_feature_reply_t *rmp;
633 u8 is_del = mp->is_add == 0;
634 u32 sw_if_index = ntohl (mp->sw_if_index);
637 if (sm->deterministic)
639 rv = VNET_API_ERROR_UNSUPPORTED;
643 VALIDATE_SW_IF_INDEX (mp);
645 rv = snat_interface_add_del_output_feature (sw_if_index, mp->is_inside,
648 BAD_SW_IF_INDEX_LABEL;
650 REPLY_MACRO (VL_API_NAT44_INTERFACE_ADD_DEL_OUTPUT_FEATURE_REPLY);
653 static void *vl_api_nat44_interface_add_del_output_feature_t_print
654 (vl_api_nat44_interface_add_del_output_feature_t * mp, void *handle)
658 s = format (0, "SCRIPT: nat44_interface_add_del_output_feature ");
659 s = format (s, "sw_if_index %d %s %s",
660 clib_host_to_net_u32 (mp->sw_if_index),
661 mp->is_inside ? "in" : "out", mp->is_add ? "" : "del");
667 send_nat44_interface_output_feature_details (snat_interface_t * i,
668 vl_api_registration_t * reg,
671 vl_api_nat44_interface_output_feature_details_t *rmp;
672 snat_main_t *sm = &snat_main;
674 rmp = vl_msg_api_alloc (sizeof (*rmp));
675 memset (rmp, 0, sizeof (*rmp));
677 ntohs (VL_API_NAT44_INTERFACE_OUTPUT_FEATURE_DETAILS + sm->msg_id_base);
678 rmp->sw_if_index = ntohl (i->sw_if_index);
679 rmp->context = context;
680 rmp->is_inside = nat_interface_is_inside (i);
682 vl_api_send_msg (reg, (u8 *) rmp);
686 vl_api_nat44_interface_output_feature_dump_t_handler
687 (vl_api_nat44_interface_output_feature_dump_t * mp)
689 vl_api_registration_t *reg;
690 snat_main_t *sm = &snat_main;
693 if (sm->deterministic)
696 reg = vl_api_client_index_to_registration (mp->client_index);
701 pool_foreach (i, sm->output_feature_interfaces,
703 send_nat44_interface_output_feature_details(i, reg, mp->context);
708 static void *vl_api_nat44_interface_output_feature_dump_t_print
709 (vl_api_nat44_interface_output_feature_dump_t * mp, void *handle)
713 s = format (0, "SCRIPT: nat44_interface_output_feature_dump ");
719 vl_api_nat44_add_del_static_mapping_t_handler
720 (vl_api_nat44_add_del_static_mapping_t * mp)
722 snat_main_t *sm = &snat_main;
723 vl_api_nat44_add_del_static_mapping_reply_t *rmp;
724 ip4_address_t local_addr, external_addr;
725 u16 local_port = 0, external_port = 0;
726 u32 vrf_id, external_sw_if_index;
727 twice_nat_type_t twice_nat = TWICE_NAT_DISABLED;
729 snat_protocol_t proto;
732 if (sm->deterministic)
734 rv = VNET_API_ERROR_UNSUPPORTED;
738 memcpy (&local_addr.as_u8, mp->local_ip_address, 4);
739 memcpy (&external_addr.as_u8, mp->external_ip_address, 4);
740 if (mp->addr_only == 0)
742 local_port = clib_net_to_host_u16 (mp->local_port);
743 external_port = clib_net_to_host_u16 (mp->external_port);
745 vrf_id = clib_net_to_host_u32 (mp->vrf_id);
746 external_sw_if_index = clib_net_to_host_u32 (mp->external_sw_if_index);
747 proto = ip_proto_to_snat_proto (mp->protocol);
749 twice_nat = TWICE_NAT;
750 else if (mp->self_twice_nat)
751 twice_nat = TWICE_NAT_SELF;
752 mp->tag[sizeof (mp->tag) - 1] = 0;
753 tag = format (0, "%s", mp->tag);
754 vec_terminate_c_string (tag);
756 rv = snat_add_static_mapping (local_addr, external_addr, local_port,
757 external_port, vrf_id, mp->addr_only,
758 external_sw_if_index, proto, mp->is_add,
759 twice_nat, mp->out2in_only, tag);
764 REPLY_MACRO (VL_API_NAT44_ADD_DEL_STATIC_MAPPING_REPLY);
767 static void *vl_api_nat44_add_del_static_mapping_t_print
768 (vl_api_nat44_add_del_static_mapping_t * mp, void *handle)
772 s = format (0, "SCRIPT: nat44_add_del_static_mapping ");
773 s = format (s, "protocol %d local_addr %U external_addr %U ",
775 format_ip4_address, mp->local_ip_address,
776 format_ip4_address, mp->external_ip_address);
778 if (mp->addr_only == 0)
779 s = format (s, "local_port %d external_port %d ",
780 clib_net_to_host_u16 (mp->local_port),
781 clib_net_to_host_u16 (mp->external_port));
783 s = format (s, "twice_nat %d out2in_only %d ",
784 mp->twice_nat, mp->out2in_only);
786 if (mp->vrf_id != ~0)
787 s = format (s, "vrf %d", clib_net_to_host_u32 (mp->vrf_id));
789 if (mp->external_sw_if_index != ~0)
790 s = format (s, "external_sw_if_index %d",
791 clib_net_to_host_u32 (mp->external_sw_if_index));
796 send_nat44_static_mapping_details (snat_static_mapping_t * m,
797 vl_api_registration_t * reg, u32 context)
799 vl_api_nat44_static_mapping_details_t *rmp;
800 snat_main_t *sm = &snat_main;
802 rmp = vl_msg_api_alloc (sizeof (*rmp));
803 memset (rmp, 0, sizeof (*rmp));
805 ntohs (VL_API_NAT44_STATIC_MAPPING_DETAILS + sm->msg_id_base);
806 rmp->addr_only = m->addr_only;
807 clib_memcpy (rmp->local_ip_address, &(m->local_addr), 4);
808 clib_memcpy (rmp->external_ip_address, &(m->external_addr), 4);
809 rmp->external_sw_if_index = ~0;
810 rmp->vrf_id = htonl (m->vrf_id);
811 rmp->context = context;
812 if (m->twice_nat == TWICE_NAT)
814 else if (m->twice_nat == TWICE_NAT_SELF)
815 rmp->self_twice_nat = 1;
816 rmp->out2in_only = m->out2in_only;
817 if (m->addr_only == 0)
819 rmp->protocol = snat_proto_to_ip_proto (m->proto);
820 rmp->external_port = htons (m->external_port);
821 rmp->local_port = htons (m->local_port);
824 strncpy ((char *) rmp->tag, (char *) m->tag, vec_len (m->tag));
826 vl_api_send_msg (reg, (u8 *) rmp);
830 send_nat44_static_map_resolve_details (snat_static_map_resolve_t * m,
831 vl_api_registration_t * reg,
834 vl_api_nat44_static_mapping_details_t *rmp;
835 snat_main_t *sm = &snat_main;
837 rmp = vl_msg_api_alloc (sizeof (*rmp));
838 memset (rmp, 0, sizeof (*rmp));
840 ntohs (VL_API_NAT44_STATIC_MAPPING_DETAILS + sm->msg_id_base);
841 rmp->addr_only = m->addr_only;
842 clib_memcpy (rmp->local_ip_address, &(m->l_addr), 4);
843 rmp->external_sw_if_index = htonl (m->sw_if_index);
844 rmp->vrf_id = htonl (m->vrf_id);
845 rmp->context = context;
846 rmp->twice_nat = m->twice_nat;
847 if (m->addr_only == 0)
849 rmp->protocol = snat_proto_to_ip_proto (m->proto);
850 rmp->external_port = htons (m->e_port);
851 rmp->local_port = htons (m->l_port);
854 strncpy ((char *) rmp->tag, (char *) m->tag, vec_len (m->tag));
856 vl_api_send_msg (reg, (u8 *) rmp);
860 vl_api_nat44_static_mapping_dump_t_handler (vl_api_nat44_static_mapping_dump_t
863 vl_api_registration_t *reg;
864 snat_main_t *sm = &snat_main;
865 snat_static_mapping_t *m;
866 snat_static_map_resolve_t *rp;
869 if (sm->deterministic)
872 reg = vl_api_client_index_to_registration (mp->client_index);
877 pool_foreach (m, sm->static_mappings,
879 if (!vec_len (m->locals) &&
880 ((m->local_port != m->external_port)
881 || (m->local_addr.as_u32 != m->external_addr.as_u32)))
882 send_nat44_static_mapping_details (m, reg, mp->context);
886 for (j = 0; j < vec_len (sm->to_resolve); j++)
888 rp = sm->to_resolve + j;
889 if (rp->l_addr.as_u32 != 0)
890 send_nat44_static_map_resolve_details (rp, reg, mp->context);
895 vl_api_nat44_static_mapping_dump_t_print (vl_api_nat44_static_mapping_dump_t *
900 s = format (0, "SCRIPT: nat44_static_mapping_dump ");
906 vl_api_nat44_add_del_identity_mapping_t_handler
907 (vl_api_nat44_add_del_identity_mapping_t * mp)
909 snat_main_t *sm = &snat_main;
910 vl_api_nat44_add_del_identity_mapping_reply_t *rmp;
913 u32 vrf_id, sw_if_index;
915 snat_protocol_t proto = ~0;
918 if (sm->deterministic)
920 rv = VNET_API_ERROR_UNSUPPORTED;
924 if (mp->addr_only == 0)
926 port = clib_net_to_host_u16 (mp->port);
927 proto = ip_proto_to_snat_proto (mp->protocol);
929 vrf_id = clib_net_to_host_u32 (mp->vrf_id);
930 sw_if_index = clib_net_to_host_u32 (mp->sw_if_index);
931 if (sw_if_index != ~0)
934 memcpy (&addr.as_u8, mp->ip_address, 4);
935 mp->tag[sizeof (mp->tag) - 1] = 0;
936 tag = format (0, "%s", mp->tag);
937 vec_terminate_c_string (tag);
940 snat_add_static_mapping (addr, addr, port, port, vrf_id, mp->addr_only,
941 sw_if_index, proto, mp->is_add, 0, 0, tag);
946 REPLY_MACRO (VL_API_NAT44_ADD_DEL_IDENTITY_MAPPING_REPLY);
949 static void *vl_api_nat44_add_del_identity_mapping_t_print
950 (vl_api_nat44_add_del_identity_mapping_t * mp, void *handle)
954 s = format (0, "SCRIPT: nat44_add_del_identity_mapping ");
955 if (mp->sw_if_index != ~0)
956 s = format (s, "sw_if_index %d", clib_net_to_host_u32 (mp->sw_if_index));
958 s = format (s, "addr %U", format_ip4_address, mp->ip_address);
960 if (mp->addr_only == 0)
962 format (s, "protocol %d port %d", mp->protocol,
963 clib_net_to_host_u16 (mp->port));
965 if (mp->vrf_id != ~0)
966 s = format (s, "vrf %d", clib_net_to_host_u32 (mp->vrf_id));
972 send_nat44_identity_mapping_details (snat_static_mapping_t * m,
973 vl_api_registration_t * reg, u32 context)
975 vl_api_nat44_identity_mapping_details_t *rmp;
976 snat_main_t *sm = &snat_main;
978 rmp = vl_msg_api_alloc (sizeof (*rmp));
979 memset (rmp, 0, sizeof (*rmp));
981 ntohs (VL_API_NAT44_IDENTITY_MAPPING_DETAILS + sm->msg_id_base);
982 rmp->addr_only = m->addr_only;
983 clib_memcpy (rmp->ip_address, &(m->local_addr), 4);
984 rmp->port = htons (m->local_port);
985 rmp->sw_if_index = ~0;
986 rmp->vrf_id = htonl (m->vrf_id);
987 rmp->protocol = snat_proto_to_ip_proto (m->proto);
988 rmp->context = context;
990 strncpy ((char *) rmp->tag, (char *) m->tag, vec_len (m->tag));
992 vl_api_send_msg (reg, (u8 *) rmp);
996 send_nat44_identity_map_resolve_details (snat_static_map_resolve_t * m,
997 vl_api_registration_t * reg,
1000 vl_api_nat44_identity_mapping_details_t *rmp;
1001 snat_main_t *sm = &snat_main;
1003 rmp = vl_msg_api_alloc (sizeof (*rmp));
1004 memset (rmp, 0, sizeof (*rmp));
1006 ntohs (VL_API_NAT44_IDENTITY_MAPPING_DETAILS + sm->msg_id_base);
1007 rmp->addr_only = m->addr_only;
1008 rmp->port = htons (m->l_port);
1009 rmp->sw_if_index = htonl (m->sw_if_index);
1010 rmp->vrf_id = htonl (m->vrf_id);
1011 rmp->protocol = snat_proto_to_ip_proto (m->proto);
1012 rmp->context = context;
1014 strncpy ((char *) rmp->tag, (char *) m->tag, vec_len (m->tag));
1016 vl_api_send_msg (reg, (u8 *) rmp);
1020 vl_api_nat44_identity_mapping_dump_t_handler
1021 (vl_api_nat44_identity_mapping_dump_t * mp)
1023 vl_api_registration_t *reg;
1024 snat_main_t *sm = &snat_main;
1025 snat_static_mapping_t *m;
1026 snat_static_map_resolve_t *rp;
1029 if (sm->deterministic)
1032 reg = vl_api_client_index_to_registration (mp->client_index);
1037 pool_foreach (m, sm->static_mappings,
1039 if (!vec_len (m->locals) && (m->local_port == m->external_port)
1040 && (m->local_addr.as_u32 == m->external_addr.as_u32))
1041 send_nat44_identity_mapping_details (m, reg, mp->context);
1045 for (j = 0; j < vec_len (sm->to_resolve); j++)
1047 rp = sm->to_resolve + j;
1048 if (rp->l_addr.as_u32 == 0)
1049 send_nat44_identity_map_resolve_details (rp, reg, mp->context);
1053 static void *vl_api_nat44_identity_mapping_dump_t_print
1054 (vl_api_nat44_identity_mapping_dump_t * mp, void *handle)
1058 s = format (0, "SCRIPT: nat44_identity_mapping_dump ");
1064 vl_api_nat44_add_del_interface_addr_t_handler
1065 (vl_api_nat44_add_del_interface_addr_t * mp)
1067 snat_main_t *sm = &snat_main;
1068 vl_api_nat44_add_del_interface_addr_reply_t *rmp;
1069 u8 is_del = mp->is_add == 0;
1070 u32 sw_if_index = ntohl (mp->sw_if_index);
1073 if (sm->deterministic)
1075 rv = VNET_API_ERROR_UNSUPPORTED;
1079 VALIDATE_SW_IF_INDEX (mp);
1081 rv = snat_add_interface_address (sm, sw_if_index, is_del, mp->twice_nat);
1083 BAD_SW_IF_INDEX_LABEL;
1085 REPLY_MACRO (VL_API_NAT44_ADD_DEL_INTERFACE_ADDR_REPLY);
1088 static void *vl_api_nat44_add_del_interface_addr_t_print
1089 (vl_api_nat44_add_del_interface_addr_t * mp, void *handle)
1093 s = format (0, "SCRIPT: nat44_add_del_interface_addr ");
1094 s = format (s, "sw_if_index %d twice_nat %d %s",
1095 clib_host_to_net_u32 (mp->sw_if_index),
1096 mp->twice_nat, mp->is_add ? "" : "del");
1102 send_nat44_interface_addr_details (u32 sw_if_index,
1103 vl_api_registration_t * reg, u32 context,
1106 vl_api_nat44_interface_addr_details_t *rmp;
1107 snat_main_t *sm = &snat_main;
1109 rmp = vl_msg_api_alloc (sizeof (*rmp));
1110 memset (rmp, 0, sizeof (*rmp));
1112 ntohs (VL_API_NAT44_INTERFACE_ADDR_DETAILS + sm->msg_id_base);
1113 rmp->sw_if_index = ntohl (sw_if_index);
1114 rmp->twice_nat = twice_nat;
1115 rmp->context = context;
1117 vl_api_send_msg (reg, (u8 *) rmp);
1121 vl_api_nat44_interface_addr_dump_t_handler (vl_api_nat44_interface_addr_dump_t
1124 vl_api_registration_t *reg;
1125 snat_main_t *sm = &snat_main;
1128 if (sm->deterministic)
1131 reg = vl_api_client_index_to_registration (mp->client_index);
1136 vec_foreach (i, sm->auto_add_sw_if_indices)
1137 send_nat44_interface_addr_details(*i, reg, mp->context, 0);
1138 vec_foreach (i, sm->auto_add_sw_if_indices_twice_nat)
1139 send_nat44_interface_addr_details(*i, reg, mp->context, 1);
1144 vl_api_nat44_interface_addr_dump_t_print (vl_api_nat44_interface_addr_dump_t *
1149 s = format (0, "SCRIPT: nat44_interface_addr_dump ");
1155 send_nat44_user_details (snat_user_t * u, vl_api_registration_t * reg,
1158 vl_api_nat44_user_details_t *rmp;
1159 snat_main_t *sm = &snat_main;
1160 fib_table_t *fib = fib_table_get (u->fib_index, FIB_PROTOCOL_IP4);
1162 rmp = vl_msg_api_alloc (sizeof (*rmp));
1163 memset (rmp, 0, sizeof (*rmp));
1164 rmp->_vl_msg_id = ntohs (VL_API_NAT44_USER_DETAILS + sm->msg_id_base);
1166 rmp->vrf_id = ntohl (fib->ft_table_id);
1168 clib_memcpy (rmp->ip_address, &(u->addr), 4);
1169 rmp->nsessions = ntohl (u->nsessions);
1170 rmp->nstaticsessions = ntohl (u->nstaticsessions);
1171 rmp->context = context;
1173 vl_api_send_msg (reg, (u8 *) rmp);
1177 vl_api_nat44_user_dump_t_handler (vl_api_nat44_user_dump_t * mp)
1179 vl_api_registration_t *reg;
1180 snat_main_t *sm = &snat_main;
1181 snat_main_per_thread_data_t *tsm;
1184 if (sm->deterministic)
1187 reg = vl_api_client_index_to_registration (mp->client_index);
1192 vec_foreach (tsm, sm->per_thread_data)
1193 vec_foreach (u, tsm->users)
1194 send_nat44_user_details (u, reg, mp->context);
1199 vl_api_nat44_user_dump_t_print (vl_api_nat44_user_dump_t * mp, void *handle)
1203 s = format (0, "SCRIPT: nat44_user_dump ");
1209 send_nat44_user_session_details (snat_session_t * s,
1210 vl_api_registration_t * reg, u32 context)
1212 vl_api_nat44_user_session_details_t *rmp;
1213 snat_main_t *sm = &snat_main;
1215 rmp = vl_msg_api_alloc (sizeof (*rmp));
1216 memset (rmp, 0, sizeof (*rmp));
1218 ntohs (VL_API_NAT44_USER_SESSION_DETAILS + sm->msg_id_base);
1219 clib_memcpy (rmp->outside_ip_address, (&s->out2in.addr), 4);
1220 clib_memcpy (rmp->inside_ip_address, (&s->in2out.addr), 4);
1221 rmp->is_static = s->flags & SNAT_SESSION_FLAG_STATIC_MAPPING ? 1 : 0;
1222 rmp->last_heard = clib_host_to_net_u64 ((u64) s->last_heard);
1223 rmp->total_bytes = clib_host_to_net_u64 (s->total_bytes);
1224 rmp->total_pkts = ntohl (s->total_pkts);
1225 rmp->context = context;
1226 if (snat_is_unk_proto_session (s))
1228 rmp->outside_port = 0;
1229 rmp->inside_port = 0;
1230 rmp->protocol = ntohs (s->in2out.port);
1234 rmp->outside_port = s->out2in.port;
1235 rmp->inside_port = s->in2out.port;
1236 rmp->protocol = ntohs (snat_proto_to_ip_proto (s->in2out.protocol));
1239 vl_api_send_msg (reg, (u8 *) rmp);
1243 vl_api_nat44_user_session_dump_t_handler (vl_api_nat44_user_session_dump_t *
1246 vl_api_registration_t *reg;
1247 snat_main_t *sm = &snat_main;
1248 snat_main_per_thread_data_t *tsm;
1250 clib_bihash_kv_8_8_t key, value;
1251 snat_user_key_t ukey;
1253 u32 session_index, head_index, elt_index;
1254 dlist_elt_t *head, *elt;
1257 if (sm->deterministic)
1260 reg = vl_api_client_index_to_registration (mp->client_index);
1264 clib_memcpy (&ukey.addr, mp->ip_address, 4);
1265 ip.src_address.as_u32 = ukey.addr.as_u32;
1266 ukey.fib_index = fib_table_find (FIB_PROTOCOL_IP4, ntohl (mp->vrf_id));
1267 key.key = ukey.as_u64;
1268 if (sm->num_workers > 1)
1270 vec_elt_at_index (sm->per_thread_data,
1271 sm->worker_in2out_cb (&ip, ukey.fib_index));
1273 tsm = vec_elt_at_index (sm->per_thread_data, sm->num_workers);
1274 if (clib_bihash_search_8_8 (&tsm->user_hash, &key, &value))
1276 u = pool_elt_at_index (tsm->users, value.value);
1277 if (!u->nsessions && !u->nstaticsessions)
1280 head_index = u->sessions_per_user_list_head_index;
1281 head = pool_elt_at_index (tsm->list_pool, head_index);
1282 elt_index = head->next;
1283 elt = pool_elt_at_index (tsm->list_pool, elt_index);
1284 session_index = elt->value;
1285 while (session_index != ~0)
1287 s = pool_elt_at_index (tsm->sessions, session_index);
1289 send_nat44_user_session_details (s, reg, mp->context);
1291 elt_index = elt->next;
1292 elt = pool_elt_at_index (tsm->list_pool, elt_index);
1293 session_index = elt->value;
1298 vl_api_nat44_user_session_dump_t_print (vl_api_nat44_user_session_dump_t * mp,
1303 s = format (0, "SCRIPT: nat44_user_session_dump ");
1304 s = format (s, "ip_address %U vrf_id %d\n",
1305 format_ip4_address, mp->ip_address,
1306 clib_net_to_host_u32 (mp->vrf_id));
1311 static nat44_lb_addr_port_t *
1312 unformat_nat44_lb_addr_port (vl_api_nat44_lb_addr_port_t * addr_port_pairs,
1313 u8 addr_port_pair_num)
1316 nat44_lb_addr_port_t *lb_addr_port_pairs = 0, lb_addr_port;
1317 vl_api_nat44_lb_addr_port_t *ap;
1319 for (i = 0; i < addr_port_pair_num; i++)
1321 ap = &addr_port_pairs[i];
1322 memset (&lb_addr_port, 0, sizeof (lb_addr_port));
1323 clib_memcpy (&lb_addr_port.addr, ap->addr, 4);
1324 lb_addr_port.port = clib_net_to_host_u16 (ap->port);
1325 lb_addr_port.probability = ap->probability;
1326 vec_add1 (lb_addr_port_pairs, lb_addr_port);
1329 return lb_addr_port_pairs;
1333 vl_api_nat44_add_del_lb_static_mapping_t_handler
1334 (vl_api_nat44_add_del_lb_static_mapping_t * mp)
1336 snat_main_t *sm = &snat_main;
1337 vl_api_nat44_add_del_lb_static_mapping_reply_t *rmp;
1338 twice_nat_type_t twice_nat = TWICE_NAT_DISABLED;
1340 nat44_lb_addr_port_t *locals = 0;
1341 ip4_address_t e_addr;
1342 snat_protocol_t proto;
1345 if (sm->deterministic)
1347 rv = VNET_API_ERROR_UNSUPPORTED;
1351 locals = unformat_nat44_lb_addr_port (mp->locals, mp->local_num);
1352 clib_memcpy (&e_addr, mp->external_addr, 4);
1353 proto = ip_proto_to_snat_proto (mp->protocol);
1355 twice_nat = TWICE_NAT;
1356 else if (mp->self_twice_nat)
1357 twice_nat = TWICE_NAT_SELF;
1358 mp->tag[sizeof (mp->tag) - 1] = 0;
1359 tag = format (0, "%s", mp->tag);
1360 vec_terminate_c_string (tag);
1363 nat44_add_del_lb_static_mapping (e_addr,
1364 clib_net_to_host_u16 (mp->external_port),
1365 proto, clib_net_to_host_u32 (mp->vrf_id),
1366 locals, mp->is_add, twice_nat,
1367 mp->out2in_only, tag);
1373 REPLY_MACRO (VL_API_NAT44_ADD_DEL_LB_STATIC_MAPPING_REPLY);
1376 static void *vl_api_nat44_add_del_lb_static_mapping_t_print
1377 (vl_api_nat44_add_del_lb_static_mapping_t * mp, void *handle)
1381 s = format (0, "SCRIPT: nat44_add_del_lb_static_mapping ");
1382 s = format (s, "is_add %d twice_nat %d out2in_only %d ",
1383 mp->is_add, mp->twice_nat, mp->out2in_only);
1389 send_nat44_lb_static_mapping_details (snat_static_mapping_t * m,
1390 vl_api_registration_t * reg,
1393 vl_api_nat44_lb_static_mapping_details_t *rmp;
1394 snat_main_t *sm = &snat_main;
1395 nat44_lb_addr_port_t *ap;
1396 vl_api_nat44_lb_addr_port_t *locals;
1399 vl_msg_api_alloc (sizeof (*rmp) +
1400 (vec_len (m->locals) * sizeof (nat44_lb_addr_port_t)));
1401 memset (rmp, 0, sizeof (*rmp));
1403 ntohs (VL_API_NAT44_LB_STATIC_MAPPING_DETAILS + sm->msg_id_base);
1405 clib_memcpy (rmp->external_addr, &(m->external_addr), 4);
1406 rmp->external_port = ntohs (m->external_port);
1407 rmp->protocol = snat_proto_to_ip_proto (m->proto);
1408 rmp->vrf_id = ntohl (m->vrf_id);
1409 rmp->context = context;
1410 if (m->twice_nat == TWICE_NAT)
1412 else if (m->twice_nat == TWICE_NAT_SELF)
1413 rmp->self_twice_nat = 1;
1414 rmp->out2in_only = m->out2in_only;
1416 strncpy ((char *) rmp->tag, (char *) m->tag, vec_len (m->tag));
1418 locals = (vl_api_nat44_lb_addr_port_t *) rmp->locals;
1419 vec_foreach (ap, m->locals)
1421 clib_memcpy (locals->addr, &(ap->addr), 4);
1422 locals->port = htons (ap->port);
1423 locals->probability = ap->probability;
1428 vl_api_send_msg (reg, (u8 *) rmp);
1432 vl_api_nat44_lb_static_mapping_dump_t_handler
1433 (vl_api_nat44_lb_static_mapping_dump_t * mp)
1435 vl_api_registration_t *reg;
1436 snat_main_t *sm = &snat_main;
1437 snat_static_mapping_t *m;
1439 if (sm->deterministic)
1442 reg = vl_api_client_index_to_registration (mp->client_index);
1447 pool_foreach (m, sm->static_mappings,
1449 if (vec_len(m->locals))
1450 send_nat44_lb_static_mapping_details (m, reg, mp->context);
1455 static void *vl_api_nat44_lb_static_mapping_dump_t_print
1456 (vl_api_nat44_lb_static_mapping_dump_t * mp, void *handle)
1460 s = format (0, "SCRIPT: nat44_lb_static_mapping_dump ");
1466 vl_api_nat44_del_session_t_handler (vl_api_nat44_del_session_t * mp)
1468 snat_main_t *sm = &snat_main;
1469 vl_api_nat44_del_session_reply_t *rmp;
1474 snat_protocol_t proto;
1476 if (sm->deterministic)
1478 rv = VNET_API_ERROR_UNSUPPORTED;
1482 memcpy (&addr.as_u8, mp->address, 4);
1483 port = clib_net_to_host_u16 (mp->port);
1484 vrf_id = clib_net_to_host_u32 (mp->vrf_id);
1485 proto = ip_proto_to_snat_proto (mp->protocol);
1487 rv = nat44_del_session (sm, &addr, port, proto, vrf_id, mp->is_in);
1490 REPLY_MACRO (VL_API_NAT44_DEL_SESSION_REPLY);
1494 vl_api_nat44_del_session_t_print (vl_api_nat44_del_session_t * mp,
1499 s = format (0, "SCRIPT: nat44_add_del_static_mapping ");
1500 s = format (s, "addr %U port %d protocol %d vrf_id %d is_in %d",
1501 format_ip4_address, mp->address,
1502 clib_net_to_host_u16 (mp->port),
1503 mp->protocol, clib_net_to_host_u32 (mp->vrf_id), mp->is_in);
1509 vl_api_nat44_forwarding_enable_disable_t_handler
1510 (vl_api_nat44_forwarding_enable_disable_t * mp)
1512 snat_main_t *sm = &snat_main;
1513 vl_api_nat44_forwarding_enable_disable_reply_t *rmp;
1516 sm->forwarding_enabled = mp->enable != 0;
1518 REPLY_MACRO (VL_API_NAT44_FORWARDING_ENABLE_DISABLE_REPLY);
1521 static void *vl_api_nat44_forwarding_enable_disable_t_print
1522 (vl_api_nat44_forwarding_enable_disable_t * mp, void *handle)
1526 s = format (0, "SCRIPT: nat44_forwarding_enable_disable ");
1527 s = format (s, "enable %d", mp->enable != 0);
1533 vl_api_nat44_forwarding_is_enabled_t_handler
1534 (vl_api_nat44_forwarding_is_enabled_t * mp)
1536 vl_api_registration_t *reg;
1537 snat_main_t *sm = &snat_main;
1538 vl_api_nat44_forwarding_is_enabled_reply_t *rmp;
1540 reg = vl_api_client_index_to_registration (mp->client_index);
1544 rmp = vl_msg_api_alloc (sizeof (*rmp));
1545 memset (rmp, 0, sizeof (*rmp));
1547 ntohs (VL_API_NAT44_FORWARDING_IS_ENABLED_REPLY + sm->msg_id_base);
1548 rmp->context = mp->context;
1550 rmp->enabled = sm->forwarding_enabled;
1552 vl_api_send_msg (reg, (u8 *) rmp);
1555 static void *vl_api_nat44_forwarding_is_enabled_t_print
1556 (vl_api_nat44_forwarding_is_enabled_t * mp, void *handle)
1560 s = format (0, "SCRIPT: nat44_forwarding_is_enabled ");
1565 /*******************************/
1566 /*** Deterministic NAT (CGN) ***/
1567 /*******************************/
1570 vl_api_nat_det_add_del_map_t_handler (vl_api_nat_det_add_del_map_t * mp)
1572 snat_main_t *sm = &snat_main;
1573 vl_api_nat_det_add_del_map_reply_t *rmp;
1575 ip4_address_t in_addr, out_addr;
1577 if (!sm->deterministic)
1579 rv = VNET_API_ERROR_UNSUPPORTED;
1585 rv = VNET_API_ERROR_UNIMPLEMENTED;
1589 clib_memcpy (&in_addr, mp->in_addr, 4);
1590 clib_memcpy (&out_addr, mp->out_addr, 4);
1591 rv = snat_det_add_map (sm, &in_addr, mp->in_plen, &out_addr,
1592 mp->out_plen, mp->is_add);
1595 REPLY_MACRO (VL_API_NAT_DET_ADD_DEL_MAP_REPLY);
1599 vl_api_nat_det_add_del_map_t_print (vl_api_nat_det_add_del_map_t * mp,
1604 s = format (0, "SCRIPT: nat_det_add_del_map ");
1605 s = format (s, "inside address %U/%d outside address %U/%d\n",
1606 format_ip4_address, mp->in_addr, mp->in_plen,
1607 format_ip4_address, mp->out_addr, mp->out_plen);
1613 vl_api_nat_det_forward_t_handler (vl_api_nat_det_forward_t * mp)
1615 snat_main_t *sm = &snat_main;
1616 vl_api_nat_det_forward_reply_t *rmp;
1618 u16 lo_port = 0, hi_port = 0;
1620 ip4_address_t in_addr, out_addr;
1622 if (!sm->deterministic)
1624 rv = VNET_API_ERROR_UNSUPPORTED;
1625 REPLY_MACRO (VL_API_NAT_DET_FORWARD_REPLY);
1631 out_addr.as_u32 = 0;
1632 rv = VNET_API_ERROR_UNIMPLEMENTED;
1636 out_addr.as_u32 = 0;
1637 clib_memcpy (&in_addr, mp->in_addr, 4);
1638 dm = snat_det_map_by_user (sm, &in_addr);
1641 rv = VNET_API_ERROR_NO_SUCH_ENTRY;
1645 snat_det_forward (dm, &in_addr, &out_addr, &lo_port);
1646 hi_port = lo_port + dm->ports_per_host - 1;
1650 REPLY_MACRO2 (VL_API_NAT_DET_FORWARD_REPLY,
1652 rmp->out_port_lo = ntohs (lo_port);
1653 rmp->out_port_hi = ntohs (hi_port);
1654 clib_memcpy (rmp->out_addr, &out_addr, 4);
1660 vl_api_nat_det_forward_t_print (vl_api_nat_det_forward_t * mp, void *handle)
1664 s = format (0, "SCRIPT: nat_det_forward");
1665 s = format (s, "inside ip address %U\n", format_ip4_address, mp->in_addr);
1671 vl_api_nat_det_reverse_t_handler (vl_api_nat_det_reverse_t * mp)
1673 snat_main_t *sm = &snat_main;
1674 vl_api_nat_det_reverse_reply_t *rmp;
1676 ip4_address_t out_addr, in_addr;
1679 if (!sm->deterministic)
1681 rv = VNET_API_ERROR_UNSUPPORTED;
1682 REPLY_MACRO (VL_API_NAT_DET_REVERSE_REPLY);
1687 clib_memcpy (&out_addr, mp->out_addr, 4);
1688 dm = snat_det_map_by_out (sm, &out_addr);
1691 rv = VNET_API_ERROR_NO_SUCH_ENTRY;
1695 snat_det_reverse (dm, &out_addr, htons (mp->out_port), &in_addr);
1699 REPLY_MACRO2 (VL_API_NAT_DET_REVERSE_REPLY,
1702 memset (rmp->in_addr, 0, 16);
1703 clib_memcpy (rmp->in_addr, &in_addr, 4);
1709 vl_api_nat_det_reverse_t_print (vl_api_nat_det_reverse_t * mp, void *handle)
1713 s = format (0, "SCRIPT: nat_det_reverse");
1714 s = format (s, "outside ip address %U outside port %d",
1715 format_ip4_address, mp->out_addr, ntohs (mp->out_port));
1721 sent_nat_det_map_details (snat_det_map_t * m, vl_api_registration_t * reg,
1724 vl_api_nat_det_map_details_t *rmp;
1725 snat_main_t *sm = &snat_main;
1727 rmp = vl_msg_api_alloc (sizeof (*rmp));
1728 memset (rmp, 0, sizeof (*rmp));
1729 rmp->_vl_msg_id = ntohs (VL_API_NAT_DET_MAP_DETAILS + sm->msg_id_base);
1731 clib_memcpy (rmp->in_addr, &m->in_addr, 4);
1732 rmp->in_plen = m->in_plen;
1733 clib_memcpy (rmp->out_addr, &m->out_addr, 4);
1734 rmp->out_plen = m->out_plen;
1735 rmp->sharing_ratio = htonl (m->sharing_ratio);
1736 rmp->ports_per_host = htons (m->ports_per_host);
1737 rmp->ses_num = htonl (m->ses_num);
1738 rmp->context = context;
1740 vl_api_send_msg (reg, (u8 *) rmp);
1744 vl_api_nat_det_map_dump_t_handler (vl_api_nat_det_map_dump_t * mp)
1746 vl_api_registration_t *reg;
1747 snat_main_t *sm = &snat_main;
1750 if (!sm->deterministic)
1753 reg = vl_api_client_index_to_registration (mp->client_index);
1758 vec_foreach(m, sm->det_maps)
1759 sent_nat_det_map_details(m, reg, mp->context);
1764 vl_api_nat_det_map_dump_t_print (vl_api_nat_det_map_dump_t * mp, void *handle)
1768 s = format (0, "SCRIPT: nat_det_map_dump ");
1774 vl_api_nat_det_set_timeouts_t_handler (vl_api_nat_det_set_timeouts_t * mp)
1776 snat_main_t *sm = &snat_main;
1777 vl_api_nat_det_set_timeouts_reply_t *rmp;
1780 if (!sm->deterministic)
1782 rv = VNET_API_ERROR_UNSUPPORTED;
1786 sm->udp_timeout = ntohl (mp->udp);
1787 sm->tcp_established_timeout = ntohl (mp->tcp_established);
1788 sm->tcp_transitory_timeout = ntohl (mp->tcp_transitory);
1789 sm->icmp_timeout = ntohl (mp->icmp);
1792 REPLY_MACRO (VL_API_NAT_DET_SET_TIMEOUTS_REPLY);
1796 vl_api_nat_det_set_timeouts_t_print (vl_api_nat_det_set_timeouts_t * mp,
1801 s = format (0, "SCRIPT: nat_det_set_timeouts ");
1802 s = format (s, "udp %d tcp_established %d tcp_transitory %d icmp %d\n",
1804 ntohl (mp->tcp_established),
1805 ntohl (mp->tcp_transitory), ntohl (mp->icmp));
1811 vl_api_nat_det_get_timeouts_t_handler (vl_api_nat_det_get_timeouts_t * mp)
1813 snat_main_t *sm = &snat_main;
1814 vl_api_nat_det_get_timeouts_reply_t *rmp;
1817 if (!sm->deterministic)
1819 rv = VNET_API_ERROR_UNSUPPORTED;
1820 REPLY_MACRO (VL_API_NAT_DET_GET_TIMEOUTS_REPLY);
1825 REPLY_MACRO2 (VL_API_NAT_DET_GET_TIMEOUTS_REPLY,
1827 rmp->udp = htonl (sm->udp_timeout);
1828 rmp->tcp_established = htonl (sm->tcp_established_timeout);
1829 rmp->tcp_transitory = htonl (sm->tcp_transitory_timeout);
1830 rmp->icmp = htonl (sm->icmp_timeout);
1836 vl_api_nat_det_get_timeouts_t_print (vl_api_nat_det_get_timeouts_t * mp,
1841 s = format (0, "SCRIPT: nat_det_get_timeouts");
1847 vl_api_nat_det_close_session_out_t_handler (vl_api_nat_det_close_session_out_t
1850 snat_main_t *sm = &snat_main;
1851 vl_api_nat_det_close_session_out_reply_t *rmp;
1852 ip4_address_t out_addr, ext_addr, in_addr;
1853 snat_det_out_key_t key;
1855 snat_det_session_t *ses;
1858 if (!sm->deterministic)
1860 rv = VNET_API_ERROR_UNSUPPORTED;
1864 clib_memcpy (&out_addr, mp->out_addr, 4);
1865 clib_memcpy (&ext_addr, mp->ext_addr, 4);
1867 dm = snat_det_map_by_out (sm, &out_addr);
1870 rv = VNET_API_ERROR_NO_SUCH_ENTRY;
1873 snat_det_reverse (dm, &ext_addr, ntohs (mp->out_port), &in_addr);
1874 key.ext_host_addr = ext_addr;
1875 key.ext_host_port = mp->ext_port;
1876 key.out_port = mp->out_port;
1877 ses = snat_det_get_ses_by_out (dm, &in_addr, key.as_u64);
1880 rv = VNET_API_ERROR_NO_SUCH_ENTRY;
1883 snat_det_ses_close (dm, ses);
1886 REPLY_MACRO (VL_API_NAT_DET_CLOSE_SESSION_OUT_REPLY);
1890 vl_api_nat_det_close_session_out_t_print (vl_api_nat_det_close_session_out_t *
1895 s = format (0, "SCRIPT: nat_det_close_session_out ");
1896 s = format (s, "out_addr %U out_port %d "
1897 "ext_addr %U ext_port %d\n",
1898 format_ip4_address, mp->out_addr, ntohs (mp->out_port),
1899 format_ip4_address, mp->ext_addr, ntohs (mp->ext_port));
1905 vl_api_nat_det_close_session_in_t_handler (vl_api_nat_det_close_session_in_t *
1908 snat_main_t *sm = &snat_main;
1909 vl_api_nat_det_close_session_in_reply_t *rmp;
1910 ip4_address_t in_addr, ext_addr;
1911 snat_det_out_key_t key;
1913 snat_det_session_t *ses;
1916 if (!sm->deterministic)
1918 rv = VNET_API_ERROR_UNSUPPORTED;
1924 rv = VNET_API_ERROR_UNIMPLEMENTED;
1928 clib_memcpy (&in_addr, mp->in_addr, 4);
1929 clib_memcpy (&ext_addr, mp->ext_addr, 4);
1931 dm = snat_det_map_by_user (sm, &in_addr);
1934 rv = VNET_API_ERROR_NO_SUCH_ENTRY;
1937 key.ext_host_addr = ext_addr;
1938 key.ext_host_port = mp->ext_port;
1939 ses = snat_det_find_ses_by_in (dm, &in_addr, mp->in_port, key);
1942 rv = VNET_API_ERROR_NO_SUCH_ENTRY;
1945 snat_det_ses_close (dm, ses);
1948 REPLY_MACRO (VL_API_NAT_DET_CLOSE_SESSION_OUT_REPLY);
1952 vl_api_nat_det_close_session_in_t_print (vl_api_nat_det_close_session_in_t *
1956 s = format (0, "SCRIPT: nat_det_close_session_in ");
1957 s = format (s, "in_addr %U in_port %d ext_addr %U ext_port %d\n",
1958 format_ip4_address, mp->in_addr, ntohs (mp->in_port),
1959 format_ip4_address, mp->ext_addr, ntohs (mp->ext_port));
1965 send_nat_det_session_details (snat_det_session_t * s,
1966 vl_api_registration_t * reg, u32 context)
1968 vl_api_nat_det_session_details_t *rmp;
1969 snat_main_t *sm = &snat_main;
1971 rmp = vl_msg_api_alloc (sizeof (*rmp));
1972 memset (rmp, 0, sizeof (*rmp));
1973 rmp->_vl_msg_id = ntohs (VL_API_NAT_DET_SESSION_DETAILS + sm->msg_id_base);
1974 rmp->in_port = s->in_port;
1975 clib_memcpy (rmp->ext_addr, &s->out.ext_host_addr, 4);
1976 rmp->ext_port = s->out.ext_host_port;
1977 rmp->out_port = s->out.out_port;
1978 rmp->state = s->state;
1979 rmp->expire = ntohl (s->expire);
1980 rmp->context = context;
1982 vl_api_send_msg (reg, (u8 *) rmp);
1986 vl_api_nat_det_session_dump_t_handler (vl_api_nat_det_session_dump_t * mp)
1988 vl_api_registration_t *reg;
1989 snat_main_t *sm = &snat_main;
1990 ip4_address_t user_addr;
1992 snat_det_session_t *s, empty_ses;
1995 if (!sm->deterministic)
1998 reg = vl_api_client_index_to_registration (mp->client_index);
2004 memset (&empty_ses, 0, sizeof (empty_ses));
2005 clib_memcpy (&user_addr, mp->user_addr, 4);
2006 dm = snat_det_map_by_user (sm, &user_addr);
2010 s = dm->sessions + snat_det_user_ses_offset (&user_addr, dm->in_plen);
2011 for (i = 0; i < SNAT_DET_SES_PER_USER; i++)
2014 send_nat_det_session_details (s, reg, mp->context);
2020 vl_api_nat_det_session_dump_t_print (vl_api_nat_det_session_dump_t * mp,
2025 s = format (0, "SCRIPT: nat_det_session_dump ");
2026 s = format (s, "user_addr %U\n", format_ip4_address, mp->user_addr);
2036 vl_api_nat64_add_del_pool_addr_range_t_handler
2037 (vl_api_nat64_add_del_pool_addr_range_t * mp)
2039 vl_api_nat64_add_del_pool_addr_range_reply_t *rmp;
2040 snat_main_t *sm = &snat_main;
2042 ip4_address_t this_addr;
2043 u32 start_host_order, end_host_order;
2048 tmp = (u32 *) mp->start_addr;
2049 start_host_order = clib_host_to_net_u32 (tmp[0]);
2050 tmp = (u32 *) mp->end_addr;
2051 end_host_order = clib_host_to_net_u32 (tmp[0]);
2053 count = (end_host_order - start_host_order) + 1;
2055 vrf_id = clib_host_to_net_u32 (mp->vrf_id);
2057 memcpy (&this_addr.as_u8, mp->start_addr, 4);
2059 for (i = 0; i < count; i++)
2061 if ((rv = nat64_add_del_pool_addr (&this_addr, vrf_id, mp->is_add)))
2064 increment_v4_address (&this_addr);
2068 REPLY_MACRO (VL_API_NAT64_ADD_DEL_POOL_ADDR_RANGE_REPLY);
2071 static void *vl_api_nat64_add_del_pool_addr_range_t_print
2072 (vl_api_nat64_add_del_pool_addr_range_t * mp, void *handle)
2076 s = format (0, "SCRIPT: nat64_add_del_pool_addr_range ");
2077 s = format (s, "%U - %U vrf_id %u %s\n",
2078 format_ip4_address, mp->start_addr,
2079 format_ip4_address, mp->end_addr,
2080 ntohl (mp->vrf_id), mp->is_add ? "" : "del");
2085 typedef struct nat64_api_walk_ctx_t_
2087 vl_api_registration_t *reg;
2090 } nat64_api_walk_ctx_t;
2093 nat64_api_pool_walk (snat_address_t * a, void *arg)
2095 vl_api_nat64_pool_addr_details_t *rmp;
2096 snat_main_t *sm = &snat_main;
2097 nat64_api_walk_ctx_t *ctx = arg;
2099 rmp = vl_msg_api_alloc (sizeof (*rmp));
2100 memset (rmp, 0, sizeof (*rmp));
2101 rmp->_vl_msg_id = ntohs (VL_API_NAT64_POOL_ADDR_DETAILS + sm->msg_id_base);
2102 clib_memcpy (rmp->address, &(a->addr), 4);
2103 if (a->fib_index != ~0)
2105 fib_table_t *fib = fib_table_get (a->fib_index, FIB_PROTOCOL_IP6);
2108 rmp->vrf_id = ntohl (fib->ft_table_id);
2112 rmp->context = ctx->context;
2114 vl_api_send_msg (ctx->reg, (u8 *) rmp);
2120 vl_api_nat64_pool_addr_dump_t_handler (vl_api_nat64_pool_addr_dump_t * mp)
2122 vl_api_registration_t *reg;
2124 reg = vl_api_client_index_to_registration (mp->client_index);
2128 nat64_api_walk_ctx_t ctx = {
2130 .context = mp->context,
2133 nat64_pool_addr_walk (nat64_api_pool_walk, &ctx);
2137 vl_api_nat64_pool_addr_dump_t_print (vl_api_nat64_pool_addr_dump_t * mp,
2142 s = format (0, "SCRIPT: nat64_pool_addr_dump\n");
2148 vl_api_nat64_add_del_interface_t_handler (vl_api_nat64_add_del_interface_t *
2151 snat_main_t *sm = &snat_main;
2152 vl_api_nat64_add_del_interface_reply_t *rmp;
2155 VALIDATE_SW_IF_INDEX (mp);
2158 nat64_add_del_interface (ntohl (mp->sw_if_index), mp->is_inside,
2161 BAD_SW_IF_INDEX_LABEL;
2163 REPLY_MACRO (VL_API_NAT64_ADD_DEL_INTERFACE_REPLY);
2167 vl_api_nat64_add_del_interface_t_print (vl_api_nat64_add_del_interface_t * mp,
2172 s = format (0, "SCRIPT: nat64_add_del_interface ");
2173 s = format (s, "sw_if_index %d %s %s",
2174 clib_host_to_net_u32 (mp->sw_if_index),
2175 mp->is_inside ? "in" : "out", mp->is_add ? "" : "del");
2181 nat64_api_interface_walk (snat_interface_t * i, void *arg)
2183 vl_api_nat64_interface_details_t *rmp;
2184 snat_main_t *sm = &snat_main;
2185 nat64_api_walk_ctx_t *ctx = arg;
2187 rmp = vl_msg_api_alloc (sizeof (*rmp));
2188 memset (rmp, 0, sizeof (*rmp));
2189 rmp->_vl_msg_id = ntohs (VL_API_NAT64_INTERFACE_DETAILS + sm->msg_id_base);
2190 rmp->sw_if_index = ntohl (i->sw_if_index);
2191 rmp->is_inside = (nat_interface_is_inside (i)
2192 && nat_interface_is_outside (i)) ? 2 :
2193 nat_interface_is_inside (i);
2194 rmp->context = ctx->context;
2196 vl_api_send_msg (ctx->reg, (u8 *) rmp);
2202 vl_api_nat64_interface_dump_t_handler (vl_api_nat64_interface_dump_t * mp)
2204 vl_api_registration_t *reg;
2206 reg = vl_api_client_index_to_registration (mp->client_index);
2210 nat64_api_walk_ctx_t ctx = {
2212 .context = mp->context,
2215 nat64_interfaces_walk (nat64_api_interface_walk, &ctx);
2219 vl_api_nat64_interface_dump_t_print (vl_api_nat64_interface_dump_t * mp,
2224 s = format (0, "SCRIPT: snat_interface_dump ");
2230 vl_api_nat64_add_del_static_bib_t_handler
2231 (vl_api_nat64_add_del_static_bib_t * mp)
2233 snat_main_t *sm = &snat_main;
2234 vl_api_nat64_add_del_static_bib_reply_t *rmp;
2235 ip6_address_t in_addr;
2236 ip4_address_t out_addr;
2239 memcpy (&in_addr.as_u8, mp->i_addr, 16);
2240 memcpy (&out_addr.as_u8, mp->o_addr, 4);
2243 nat64_add_del_static_bib_entry (&in_addr, &out_addr,
2244 clib_net_to_host_u16 (mp->i_port),
2245 clib_net_to_host_u16 (mp->o_port),
2247 clib_net_to_host_u32 (mp->vrf_id),
2250 REPLY_MACRO (VL_API_NAT64_ADD_DEL_STATIC_BIB_REPLY);
2253 static void *vl_api_nat64_add_del_static_bib_t_print
2254 (vl_api_nat64_add_del_static_bib_t * mp, void *handle)
2258 s = format (0, "SCRIPT: nat64_add_del_static_bib ");
2259 s = format (s, "protocol %d i_addr %U o_addr %U ",
2261 format_ip6_address, mp->i_addr, format_ip4_address, mp->o_addr);
2263 if (mp->vrf_id != ~0)
2264 s = format (s, "vrf %d", clib_net_to_host_u32 (mp->vrf_id));
2270 nat64_api_bib_walk (nat64_db_bib_entry_t * bibe, void *arg)
2272 vl_api_nat64_bib_details_t *rmp;
2273 snat_main_t *sm = &snat_main;
2274 nat64_api_walk_ctx_t *ctx = arg;
2277 fib = fib_table_get (bibe->fib_index, FIB_PROTOCOL_IP6);
2281 rmp = vl_msg_api_alloc (sizeof (*rmp));
2282 memset (rmp, 0, sizeof (*rmp));
2283 rmp->_vl_msg_id = ntohs (VL_API_NAT64_BIB_DETAILS + sm->msg_id_base);
2284 rmp->context = ctx->context;
2285 clib_memcpy (rmp->i_addr, &(bibe->in_addr), 16);
2286 clib_memcpy (rmp->o_addr, &(bibe->out_addr), 4);
2287 rmp->i_port = bibe->in_port;
2288 rmp->o_port = bibe->out_port;
2289 rmp->vrf_id = ntohl (fib->ft_table_id);
2290 rmp->proto = bibe->proto;
2291 rmp->is_static = bibe->is_static;
2292 rmp->ses_num = ntohl (bibe->ses_num);
2294 vl_api_send_msg (ctx->reg, (u8 *) rmp);
2300 vl_api_nat64_bib_dump_t_handler (vl_api_nat64_bib_dump_t * mp)
2302 vl_api_registration_t *reg;
2303 nat64_main_t *nm = &nat64_main;
2306 reg = vl_api_client_index_to_registration (mp->client_index);
2310 nat64_api_walk_ctx_t ctx = {
2312 .context = mp->context,
2316 vec_foreach (db, nm->db)
2317 nat64_db_bib_walk (db, mp->proto, nat64_api_bib_walk, &ctx);
2322 vl_api_nat64_bib_dump_t_print (vl_api_nat64_bib_dump_t * mp, void *handle)
2326 s = format (0, "SCRIPT: snat_bib_dump protocol %d", mp->proto);
2332 vl_api_nat64_set_timeouts_t_handler (vl_api_nat64_set_timeouts_t * mp)
2334 snat_main_t *sm = &snat_main;
2335 vl_api_nat64_set_timeouts_reply_t *rmp;
2338 rv = nat64_set_icmp_timeout (ntohl (mp->icmp));
2341 rv = nat64_set_udp_timeout (ntohl (mp->udp));
2345 nat64_set_tcp_timeouts (ntohl (mp->tcp_trans), ntohl (mp->tcp_est),
2346 ntohl (mp->tcp_incoming_syn));
2349 REPLY_MACRO (VL_API_NAT64_SET_TIMEOUTS_REPLY);
2352 static void *vl_api_nat64_set_timeouts_t_print
2353 (vl_api_nat64_set_timeouts_t * mp, void *handle)
2357 s = format (0, "SCRIPT: nat64_set_timeouts ");
2360 "udp %d icmp %d, tcp_trans %d, tcp_est %d, tcp_incoming_syn %d\n",
2361 ntohl (mp->udp), ntohl (mp->icmp), ntohl (mp->tcp_trans),
2362 ntohl (mp->tcp_est), ntohl (mp->tcp_incoming_syn));
2368 vl_api_nat64_get_timeouts_t_handler (vl_api_nat64_get_timeouts_t * mp)
2370 snat_main_t *sm = &snat_main;
2371 vl_api_nat64_get_timeouts_reply_t *rmp;
2375 REPLY_MACRO2 (VL_API_NAT64_GET_TIMEOUTS_REPLY,
2377 rmp->udp = htonl (nat64_get_udp_timeout());
2378 rmp->icmp = htonl (nat64_get_icmp_timeout());
2379 rmp->tcp_trans = htonl (nat64_get_tcp_trans_timeout());
2380 rmp->tcp_est = htonl (nat64_get_tcp_est_timeout());
2381 rmp->tcp_incoming_syn = htonl (nat64_get_tcp_incoming_syn_timeout());
2386 static void *vl_api_nat64_get_timeouts_t_print
2387 (vl_api_nat64_get_timeouts_t * mp, void *handle)
2391 s = format (0, "SCRIPT: nat64_get_timeouts");
2397 nat64_api_st_walk (nat64_db_st_entry_t * ste, void *arg)
2399 vl_api_nat64_st_details_t *rmp;
2400 snat_main_t *sm = &snat_main;
2401 nat64_api_walk_ctx_t *ctx = arg;
2402 nat64_db_bib_entry_t *bibe;
2405 bibe = nat64_db_bib_entry_by_index (ctx->db, ste->proto, ste->bibe_index);
2409 fib = fib_table_get (bibe->fib_index, FIB_PROTOCOL_IP6);
2413 rmp = vl_msg_api_alloc (sizeof (*rmp));
2414 memset (rmp, 0, sizeof (*rmp));
2415 rmp->_vl_msg_id = ntohs (VL_API_NAT64_ST_DETAILS + sm->msg_id_base);
2416 rmp->context = ctx->context;
2417 clib_memcpy (rmp->il_addr, &(bibe->in_addr), 16);
2418 clib_memcpy (rmp->ol_addr, &(bibe->out_addr), 4);
2419 rmp->il_port = bibe->in_port;
2420 rmp->ol_port = bibe->out_port;
2421 clib_memcpy (rmp->ir_addr, &(ste->in_r_addr), 16);
2422 clib_memcpy (rmp->or_addr, &(ste->out_r_addr), 4);
2423 rmp->il_port = ste->r_port;
2424 rmp->vrf_id = ntohl (fib->ft_table_id);
2425 rmp->proto = ste->proto;
2427 vl_api_send_msg (ctx->reg, (u8 *) rmp);
2433 vl_api_nat64_st_dump_t_handler (vl_api_nat64_st_dump_t * mp)
2435 vl_api_registration_t *reg;
2436 nat64_main_t *nm = &nat64_main;
2439 reg = vl_api_client_index_to_registration (mp->client_index);
2443 nat64_api_walk_ctx_t ctx = {
2445 .context = mp->context,
2449 vec_foreach (db, nm->db)
2452 nat64_db_st_walk (db, mp->proto, nat64_api_st_walk, &ctx);
2458 vl_api_nat64_st_dump_t_print (vl_api_nat64_st_dump_t * mp, void *handle)
2462 s = format (0, "SCRIPT: snat_st_dump protocol %d", mp->proto);
2468 vl_api_nat64_add_del_prefix_t_handler (vl_api_nat64_add_del_prefix_t * mp)
2470 vl_api_nat64_add_del_prefix_reply_t *rmp;
2471 snat_main_t *sm = &snat_main;
2472 ip6_address_t prefix;
2475 memcpy (&prefix.as_u8, mp->prefix, 16);
2478 nat64_add_del_prefix (&prefix, mp->prefix_len,
2479 clib_net_to_host_u32 (mp->vrf_id), mp->is_add);
2480 REPLY_MACRO (VL_API_NAT64_ADD_DEL_PREFIX_REPLY);
2484 vl_api_nat64_add_del_prefix_t_print (vl_api_nat64_add_del_prefix_t * mp,
2489 s = format (0, "SCRIPT: nat64_add_del_prefix %U/%u vrf_id %u %s\n",
2490 format_ip6_address, mp->prefix, mp->prefix_len,
2491 ntohl (mp->vrf_id), mp->is_add ? "" : "del");
2497 nat64_api_prefix_walk (nat64_prefix_t * p, void *arg)
2499 vl_api_nat64_prefix_details_t *rmp;
2500 snat_main_t *sm = &snat_main;
2501 nat64_api_walk_ctx_t *ctx = arg;
2503 rmp = vl_msg_api_alloc (sizeof (*rmp));
2504 memset (rmp, 0, sizeof (*rmp));
2505 rmp->_vl_msg_id = ntohs (VL_API_NAT64_PREFIX_DETAILS + sm->msg_id_base);
2506 clib_memcpy (rmp->prefix, &(p->prefix), 16);
2507 rmp->prefix_len = p->plen;
2508 rmp->vrf_id = ntohl (p->vrf_id);
2509 rmp->context = ctx->context;
2511 vl_api_send_msg (ctx->reg, (u8 *) rmp);
2517 vl_api_nat64_prefix_dump_t_handler (vl_api_nat64_prefix_dump_t * mp)
2519 vl_api_registration_t *reg;
2521 reg = vl_api_client_index_to_registration (mp->client_index);
2525 nat64_api_walk_ctx_t ctx = {
2527 .context = mp->context,
2530 nat64_prefix_walk (nat64_api_prefix_walk, &ctx);
2534 vl_api_nat64_prefix_dump_t_print (vl_api_nat64_prefix_dump_t * mp,
2539 s = format (0, "SCRIPT: nat64_prefix_dump\n");
2545 vl_api_nat64_add_del_interface_addr_t_handler
2546 (vl_api_nat64_add_del_interface_addr_t * mp)
2548 snat_main_t *sm = &snat_main;
2549 vl_api_nat64_add_del_interface_addr_reply_t *rmp;
2550 u32 sw_if_index = ntohl (mp->sw_if_index);
2553 VALIDATE_SW_IF_INDEX (mp);
2555 rv = nat64_add_interface_address (sw_if_index, mp->is_add);
2557 BAD_SW_IF_INDEX_LABEL;
2559 REPLY_MACRO (VL_API_NAT64_ADD_DEL_INTERFACE_ADDR_REPLY);
2562 static void *vl_api_nat64_add_del_interface_addr_t_print
2563 (vl_api_nat64_add_del_interface_addr_t * mp, void *handle)
2567 s = format (0, "SCRIPT: nat64_add_del_interface_addr ");
2568 s = format (s, "sw_if_index %d %s",
2569 clib_host_to_net_u32 (mp->sw_if_index),
2570 mp->is_add ? "" : "del");
2580 vl_api_dslite_set_aftr_addr_t_handler (vl_api_dslite_set_aftr_addr_t * mp)
2582 vl_api_dslite_set_aftr_addr_reply_t *rmp;
2583 snat_main_t *sm = &snat_main;
2584 dslite_main_t *dm = &dslite_main;
2586 ip6_address_t ip6_addr;
2587 ip4_address_t ip4_addr;
2589 memcpy (&ip6_addr.as_u8, mp->ip6_addr, 16);
2590 memcpy (&ip4_addr.as_u8, mp->ip4_addr, 4);
2592 rv = dslite_set_aftr_ip6_addr (dm, &ip6_addr);
2594 rv = dslite_set_aftr_ip4_addr (dm, &ip4_addr);
2596 REPLY_MACRO (VL_API_DSLITE_SET_AFTR_ADDR_REPLY);
2600 vl_api_dslite_set_aftr_addr_t_print (vl_api_dslite_set_aftr_addr_t * mp,
2605 s = format (0, "SCRIPT: dslite_set_aftr_addr ");
2606 s = format (s, "ip6_addr %U ip4_addr %U\n",
2607 format_ip6_address, mp->ip6_addr,
2608 format_ip4_address, mp->ip4_addr);
2614 vl_api_dslite_get_aftr_addr_t_handler (vl_api_dslite_get_aftr_addr_t * mp)
2616 snat_main_t *sm = &snat_main;
2617 vl_api_dslite_get_aftr_addr_reply_t *rmp;
2618 dslite_main_t *dm = &dslite_main;
2622 REPLY_MACRO2 (VL_API_DSLITE_GET_AFTR_ADDR_REPLY,
2624 memcpy (rmp->ip4_addr, &dm->aftr_ip4_addr.as_u8, 4);
2625 memcpy (rmp->ip6_addr, &dm->aftr_ip6_addr.as_u8, 16);
2631 vl_api_dslite_get_aftr_addr_t_print (vl_api_dslite_get_aftr_addr_t * mp,
2636 s = format (0, "SCRIPT: dslite_get_aftr_addr");
2642 vl_api_dslite_set_b4_addr_t_handler (vl_api_dslite_set_b4_addr_t * mp)
2644 vl_api_dslite_set_b4_addr_reply_t *rmp;
2645 snat_main_t *sm = &snat_main;
2646 dslite_main_t *dm = &dslite_main;
2648 ip6_address_t ip6_addr;
2649 ip4_address_t ip4_addr;
2651 memcpy (&ip6_addr.as_u8, mp->ip6_addr, 16);
2652 memcpy (&ip4_addr.as_u8, mp->ip4_addr, 4);
2654 rv = dslite_set_b4_ip6_addr (dm, &ip6_addr);
2656 rv = dslite_set_b4_ip4_addr (dm, &ip4_addr);
2658 REPLY_MACRO (VL_API_DSLITE_SET_B4_ADDR_REPLY);
2662 vl_api_dslite_set_b4_addr_t_print (vl_api_dslite_set_b4_addr_t * mp,
2667 s = format (0, "SCRIPT: dslite_set_b4_addr ");
2668 s = format (s, "ip6_addr %U ip4_addr %U\n",
2669 format_ip6_address, mp->ip6_addr,
2670 format_ip6_address, mp->ip4_addr);
2676 vl_api_dslite_get_b4_addr_t_handler (vl_api_dslite_get_b4_addr_t * mp)
2678 snat_main_t *sm = &snat_main;
2679 vl_api_dslite_get_b4_addr_reply_t *rmp;
2680 dslite_main_t *dm = &dslite_main;
2684 REPLY_MACRO2 (VL_API_DSLITE_GET_AFTR_ADDR_REPLY,
2686 memcpy (rmp->ip4_addr, &dm->b4_ip4_addr.as_u8, 4);
2687 memcpy (rmp->ip6_addr, &dm->b4_ip6_addr.as_u8, 16);
2693 vl_api_dslite_get_b4_addr_t_print (vl_api_dslite_get_b4_addr_t * mp,
2698 s = format (0, "SCRIPT: dslite_get_b4_addr");
2704 vl_api_dslite_add_del_pool_addr_range_t_handler
2705 (vl_api_dslite_add_del_pool_addr_range_t * mp)
2707 vl_api_dslite_add_del_pool_addr_range_reply_t *rmp;
2708 snat_main_t *sm = &snat_main;
2709 dslite_main_t *dm = &dslite_main;
2711 ip4_address_t this_addr;
2712 u32 start_host_order, end_host_order;
2716 tmp = (u32 *) mp->start_addr;
2717 start_host_order = clib_host_to_net_u32 (tmp[0]);
2718 tmp = (u32 *) mp->end_addr;
2719 end_host_order = clib_host_to_net_u32 (tmp[0]);
2721 count = (end_host_order - start_host_order) + 1;
2722 memcpy (&this_addr.as_u8, mp->start_addr, 4);
2724 for (i = 0; i < count; i++)
2726 if ((rv = dslite_add_del_pool_addr (dm, &this_addr, mp->is_add)))
2729 increment_v4_address (&this_addr);
2733 REPLY_MACRO (VL_API_DSLITE_ADD_DEL_POOL_ADDR_RANGE_REPLY);
2737 send_dslite_address_details (snat_address_t * ap,
2738 vl_api_registration_t * reg, u32 context)
2740 vl_api_dslite_address_details_t *rmp;
2741 snat_main_t *sm = &snat_main;
2743 rmp = vl_msg_api_alloc (sizeof (*rmp));
2745 memset (rmp, 0, sizeof (*rmp));
2747 rmp->_vl_msg_id = ntohs (VL_API_DSLITE_ADDRESS_DETAILS + sm->msg_id_base);
2748 clib_memcpy (rmp->ip_address, &(ap->addr), 4);
2749 rmp->context = context;
2751 vl_api_send_msg (reg, (u8 *) rmp);
2755 vl_api_dslite_address_dump_t_handler (vl_api_dslite_address_dump_t * mp)
2757 vl_api_registration_t *reg;
2758 dslite_main_t *dm = &dslite_main;
2761 reg = vl_api_client_index_to_registration (mp->client_index);
2766 vec_foreach (ap, dm->addr_pool)
2768 send_dslite_address_details (ap, reg, mp->context);
2774 vl_api_dslite_address_dump_t_print (vl_api_dslite_address_dump_t * mp,
2779 s = format (0, "SCRIPT: dslite_address_dump ");
2784 static void *vl_api_dslite_add_del_pool_addr_range_t_print
2785 (vl_api_dslite_add_del_pool_addr_range_t * mp, void *handle)
2789 s = format (0, "SCRIPT: dslite_add_del_pool_addr_range ");
2790 s = format (s, "%U - %U\n",
2791 format_ip4_address, mp->start_addr,
2792 format_ip4_address, mp->end_addr);
2803 vl_api_nat66_add_del_interface_t_handler (vl_api_nat66_add_del_interface_t *
2806 snat_main_t *sm = &snat_main;
2807 vl_api_nat66_add_del_interface_reply_t *rmp;
2810 VALIDATE_SW_IF_INDEX (mp);
2813 nat66_interface_add_del (ntohl (mp->sw_if_index), mp->is_inside,
2816 BAD_SW_IF_INDEX_LABEL;
2818 REPLY_MACRO (VL_API_NAT66_ADD_DEL_INTERFACE_REPLY);
2822 vl_api_nat66_add_del_interface_t_print (vl_api_nat66_add_del_interface_t * mp,
2827 s = format (0, "SCRIPT: nat66_add_del_interface ");
2828 s = format (s, "sw_if_index %d %s %s",
2829 clib_host_to_net_u32 (mp->sw_if_index),
2830 mp->is_inside ? "in" : "out", mp->is_add ? "" : "del");
2836 vl_api_nat66_add_del_static_mapping_t_handler
2837 (vl_api_nat66_add_del_static_mapping_t * mp)
2839 snat_main_t *sm = &snat_main;
2840 vl_api_nat66_add_del_static_mapping_reply_t *rmp;
2841 ip6_address_t l_addr, e_addr;
2844 memcpy (&l_addr.as_u8, mp->local_ip_address, 16);
2845 memcpy (&e_addr.as_u8, mp->external_ip_address, 16);
2848 nat66_static_mapping_add_del (&l_addr, &e_addr,
2849 clib_net_to_host_u32 (mp->vrf_id),
2852 REPLY_MACRO (VL_API_NAT66_ADD_DEL_STATIC_MAPPING_REPLY);
2855 static void *vl_api_nat66_add_del_static_mapping_t_print
2856 (vl_api_nat66_add_del_static_mapping_t * mp, void *handle)
2860 s = format (0, "SCRIPT: nat66_add_del_static_mapping ");
2861 s = format (s, "local_ip_address %U external_ip_address %U vrf_id %d %s",
2862 format_ip6_address, mp->local_ip_address,
2863 format_ip6_address, mp->external_ip_address,
2864 clib_net_to_host_u32 (mp->vrf_id), mp->is_add ? "" : "del");
2869 typedef struct nat66_api_walk_ctx_t_
2873 } nat66_api_walk_ctx_t;
2876 nat66_api_interface_walk (snat_interface_t * i, void *arg)
2878 vl_api_nat66_interface_details_t *rmp;
2879 snat_main_t *sm = &snat_main;
2880 nat66_api_walk_ctx_t *ctx = arg;
2882 rmp = vl_msg_api_alloc (sizeof (*rmp));
2883 memset (rmp, 0, sizeof (*rmp));
2884 rmp->_vl_msg_id = ntohs (VL_API_NAT66_INTERFACE_DETAILS + sm->msg_id_base);
2885 rmp->sw_if_index = ntohl (i->sw_if_index);
2886 rmp->is_inside = nat_interface_is_inside (i);
2887 rmp->context = ctx->context;
2889 vl_msg_api_send_shmem (ctx->q, (u8 *) & rmp);
2895 vl_api_nat66_interface_dump_t_handler (vl_api_nat66_interface_dump_t * mp)
2899 q = vl_api_client_index_to_input_queue (mp->client_index);
2903 nat66_api_walk_ctx_t ctx = {
2905 .context = mp->context,
2908 nat66_interfaces_walk (nat66_api_interface_walk, &ctx);
2912 vl_api_nat66_interface_dump_t_print (vl_api_nat66_interface_dump_t * mp,
2917 s = format (0, "SCRIPT: nat66_interface_dump ");
2923 nat66_api_static_mapping_walk (nat66_static_mapping_t * m, void *arg)
2925 vl_api_nat66_static_mapping_details_t *rmp;
2926 nat66_main_t *nm = &nat66_main;
2927 snat_main_t *sm = &snat_main;
2928 nat66_api_walk_ctx_t *ctx = arg;
2932 fib = fib_table_get (m->fib_index, FIB_PROTOCOL_IP6);
2936 vlib_get_combined_counter (&nm->session_counters, m - nm->sm, &vc);
2938 rmp = vl_msg_api_alloc (sizeof (*rmp));
2939 memset (rmp, 0, sizeof (*rmp));
2941 ntohs (VL_API_NAT66_STATIC_MAPPING_DETAILS + sm->msg_id_base);
2942 clib_memcpy (rmp->local_ip_address, &m->l_addr, 16);
2943 clib_memcpy (rmp->external_ip_address, &m->e_addr, 16);
2944 rmp->vrf_id = ntohl (fib->ft_table_id);
2945 rmp->total_bytes = clib_host_to_net_u64 (vc.bytes);
2946 rmp->total_pkts = clib_host_to_net_u64 (vc.packets);
2947 rmp->context = ctx->context;
2949 vl_msg_api_send_shmem (ctx->q, (u8 *) & rmp);
2955 vl_api_nat66_static_mapping_dump_t_handler (vl_api_nat66_static_mapping_dump_t
2960 q = vl_api_client_index_to_input_queue (mp->client_index);
2964 nat66_api_walk_ctx_t ctx = {
2966 .context = mp->context,
2969 nat66_static_mappings_walk (nat66_api_static_mapping_walk, &ctx);
2973 vl_api_nat66_static_mapping_dump_t_print (vl_api_nat66_static_mapping_dump_t *
2978 s = format (0, "SCRIPT: nat66_static_mapping_dump ");
2984 /* List of message types that this plugin understands */
2985 #define foreach_snat_plugin_api_msg \
2986 _(NAT_CONTROL_PING, nat_control_ping) \
2987 _(NAT_SHOW_CONFIG, nat_show_config) \
2988 _(NAT_SET_WORKERS, nat_set_workers) \
2989 _(NAT_WORKER_DUMP, nat_worker_dump) \
2990 _(NAT_IPFIX_ENABLE_DISABLE, nat_ipfix_enable_disable) \
2991 _(NAT_SET_REASS, nat_set_reass) \
2992 _(NAT_GET_REASS, nat_get_reass) \
2993 _(NAT_REASS_DUMP, nat_reass_dump) \
2994 _(NAT44_ADD_DEL_ADDRESS_RANGE, nat44_add_del_address_range) \
2995 _(NAT44_INTERFACE_ADD_DEL_FEATURE, nat44_interface_add_del_feature) \
2996 _(NAT44_ADD_DEL_STATIC_MAPPING, nat44_add_del_static_mapping) \
2997 _(NAT44_ADD_DEL_IDENTITY_MAPPING, nat44_add_del_identity_mapping) \
2998 _(NAT44_STATIC_MAPPING_DUMP, nat44_static_mapping_dump) \
2999 _(NAT44_IDENTITY_MAPPING_DUMP, nat44_identity_mapping_dump) \
3000 _(NAT44_ADDRESS_DUMP, nat44_address_dump) \
3001 _(NAT44_INTERFACE_DUMP, nat44_interface_dump) \
3002 _(NAT44_ADD_DEL_INTERFACE_ADDR, nat44_add_del_interface_addr) \
3003 _(NAT44_INTERFACE_ADDR_DUMP, nat44_interface_addr_dump) \
3004 _(NAT44_USER_DUMP, nat44_user_dump) \
3005 _(NAT44_USER_SESSION_DUMP, nat44_user_session_dump) \
3006 _(NAT44_INTERFACE_ADD_DEL_OUTPUT_FEATURE, \
3007 nat44_interface_add_del_output_feature) \
3008 _(NAT44_INTERFACE_OUTPUT_FEATURE_DUMP, \
3009 nat44_interface_output_feature_dump) \
3010 _(NAT44_ADD_DEL_LB_STATIC_MAPPING, nat44_add_del_lb_static_mapping) \
3011 _(NAT44_LB_STATIC_MAPPING_DUMP, nat44_lb_static_mapping_dump) \
3012 _(NAT44_DEL_SESSION, nat44_del_session) \
3013 _(NAT44_FORWARDING_ENABLE_DISABLE, nat44_forwarding_enable_disable) \
3014 _(NAT44_FORWARDING_IS_ENABLED, nat44_forwarding_is_enabled) \
3015 _(NAT_DET_ADD_DEL_MAP, nat_det_add_del_map) \
3016 _(NAT_DET_FORWARD, nat_det_forward) \
3017 _(NAT_DET_REVERSE, nat_det_reverse) \
3018 _(NAT_DET_MAP_DUMP, nat_det_map_dump) \
3019 _(NAT_DET_SET_TIMEOUTS, nat_det_set_timeouts) \
3020 _(NAT_DET_GET_TIMEOUTS, nat_det_get_timeouts) \
3021 _(NAT_DET_CLOSE_SESSION_OUT, nat_det_close_session_out) \
3022 _(NAT_DET_CLOSE_SESSION_IN, nat_det_close_session_in) \
3023 _(NAT_DET_SESSION_DUMP, nat_det_session_dump) \
3024 _(NAT64_ADD_DEL_POOL_ADDR_RANGE, nat64_add_del_pool_addr_range) \
3025 _(NAT64_POOL_ADDR_DUMP, nat64_pool_addr_dump) \
3026 _(NAT64_ADD_DEL_INTERFACE, nat64_add_del_interface) \
3027 _(NAT64_INTERFACE_DUMP, nat64_interface_dump) \
3028 _(NAT64_ADD_DEL_STATIC_BIB, nat64_add_del_static_bib) \
3029 _(NAT64_BIB_DUMP, nat64_bib_dump) \
3030 _(NAT64_SET_TIMEOUTS, nat64_set_timeouts) \
3031 _(NAT64_GET_TIMEOUTS, nat64_get_timeouts) \
3032 _(NAT64_ST_DUMP, nat64_st_dump) \
3033 _(NAT64_ADD_DEL_PREFIX, nat64_add_del_prefix) \
3034 _(NAT64_PREFIX_DUMP, nat64_prefix_dump) \
3035 _(NAT64_ADD_DEL_INTERFACE_ADDR, nat64_add_del_interface_addr) \
3036 _(DSLITE_ADD_DEL_POOL_ADDR_RANGE, dslite_add_del_pool_addr_range) \
3037 _(DSLITE_ADDRESS_DUMP, dslite_address_dump) \
3038 _(DSLITE_SET_AFTR_ADDR, dslite_set_aftr_addr) \
3039 _(DSLITE_GET_AFTR_ADDR, dslite_get_aftr_addr) \
3040 _(DSLITE_SET_B4_ADDR, dslite_set_b4_addr) \
3041 _(DSLITE_GET_B4_ADDR, dslite_get_b4_addr) \
3042 _(NAT66_ADD_DEL_INTERFACE, nat66_add_del_interface) \
3043 _(NAT66_INTERFACE_DUMP, nat66_interface_dump) \
3044 _(NAT66_ADD_DEL_STATIC_MAPPING, nat66_add_del_static_mapping) \
3045 _(NAT66_STATIC_MAPPING_DUMP, nat66_static_mapping_dump)
3047 /* Set up the API message handling tables */
3048 static clib_error_t *
3049 snat_plugin_api_hookup (vlib_main_t * vm)
3051 snat_main_t *sm __attribute__ ((unused)) = &snat_main;
3053 vl_msg_api_set_handlers((VL_API_##N + sm->msg_id_base), \
3055 vl_api_##n##_t_handler, \
3057 vl_api_##n##_t_endian, \
3058 vl_api_##n##_t_print, \
3059 sizeof(vl_api_##n##_t), 1);
3060 foreach_snat_plugin_api_msg;
3066 #define vl_msg_name_crc_list
3067 #include <nat/nat_all_api_h.h>
3068 #undef vl_msg_name_crc_list
3071 setup_message_id_table (snat_main_t * sm, api_main_t * am)
3073 #define _(id,n,crc) \
3074 vl_msg_api_add_msg_name_crc (am, #n "_" #crc, id + sm->msg_id_base);
3075 foreach_vl_msg_name_crc_nat;
3080 plugin_custom_dump_configure (snat_main_t * sm)
3082 #define _(n,f) sm->api_main->msg_print_handlers \
3083 [VL_API_##n + sm->msg_id_base] \
3084 = (void *) vl_api_##f##_t_print;
3085 foreach_snat_plugin_api_msg;
3090 snat_api_init (vlib_main_t * vm, snat_main_t * sm)
3093 clib_error_t *error = 0;
3095 name = format (0, "nat_%08x%c", api_version, 0);
3097 /* Ask for a correctly-sized block of API message decode slots */
3099 vl_msg_api_get_msg_ids ((char *) name, VL_MSG_FIRST_AVAILABLE);
3101 error = snat_plugin_api_hookup (vm);
3103 /* Add our API messages to the global name_crc hash table */
3104 setup_message_id_table (sm, sm->api_main);
3106 plugin_custom_dump_configure (sm);
3114 * fd.io coding-style-patch-verification: ON
3117 * eval: (c-set-style "gnu")
Code Review / vpp.git / blob