@Override protected IpAccessList featureValueOf(Interface actual) { return actual.getIncomingFilter(); } }
private Stream<Edge> generateRules_PreInInterface_NodeDropAclIn() { return _configs.values().stream() .map(Configuration::getVrfs) .map(Map::values) .flatMap(Collection::stream) .flatMap(vrf -> vrf.getInterfaces().values().stream()) .filter(iface -> iface.getIncomingFilter() != null) .map( i -> { String acl = i.getIncomingFilterName(); String node = i.getOwner().getHostname(); String iface = i.getName(); BDD aclDenyBDD = ignorableAclDenyBDD(node, acl); return new Edge( new PreInInterface(node, iface), new NodeDropAclIn(node), validSource(aclDenyBDD, node), eraseSourceAfter(aclDenyBDD, node)); }); }
@Override public Set<IpAccessList> resolve(String node, SpecifierContext ctxt) { return _interfaceSpecifier.resolve(ImmutableSet.of(node), ctxt).stream() .map( iface -> _type == Type.IN_FILTER ? iface.getIncomingFilter() : iface.getOutgoingFilter()) .collect(Collectors.toSet()); } }
return false; if (!IpAccessList.bothNullOrSameName(this.getIncomingFilter(), other.getIncomingFilter())) { return false;
IpAccessList inFilter = nextInterface.getIncomingFilter(); if (!_ignoreFilters && inFilter != null) { FlowDisposition disposition = FlowDisposition.DENIED_IN;
IpAccessList in = ge.getStart().getIncomingFilter(); IpAccessList out = ge.getStart().getOutgoingFilter();
IpAccessList inbound = i.getIncomingFilter(); if (inbound != null) { String inName =
if (i.getIncomingFilter() != null) { throw new BatfishException( dbgName + " already has a filter," + " cannot combine with iptables rules!");
currentConfiguration.getAllInterfaces().get(inputIfaceName).getIncomingFilter(); if (inputFilter != null) { if (applyFilter(
IpAccessList acl = interf.getIncomingFilter(); FilterResult filterResult = acl.filter(flow, null, ImmutableMap.of(), ImmutableMap.of());