Linx.Netlink.Rtnl.Rule (Linx v0.1.0)

rtnetlink policy-routing rules — the FIB rules that decide which routing table to consult for a given packet, based on source address, destination, firewall mark and so on.

list/1 reads rules; add/2 and delete/2 install and remove them. Rules are specified as a keyword list of selectors plus the target table:

Rtnl.Rule.add(socket, from: "10.0.0.0/24", table: 100)
Rtnl.Rule.add(socket, fwmark: 0x1,         table: 100, priority: 200)

:table is required; the family is inferred from the address selectors (:from / :to) — or defaults to IPv4 when only non-address selectors (:fwmark) are used.

Address-typed fields (:src, :dst) on a decoded %Rule{} are Linx.IP structs.

The two table representations

fib_rule_hdr.table is a u8, so tables above 255 are conveyed via the separate FRA_TABLE attribute (mapped to :table_ext); the kernel sets the header byte to RT_TABLE_UNSPEC in that case. target_table/1 returns the effective table — taking :table_ext when present, falling back to :table.

Example

{:ok, sock} = Rtnl.open()

:ok = Rule.add(sock, from: "10.0.0.0/24", table: 100)
:ok = Rule.add(sock, fwmark: 0x1, table: 100, priority: 200)

{:ok, rules} = Rule.list(sock)
# => [..., #Linx.Netlink.Rtnl.Rule<priority=200 fwmark=0x1 table=100>,
#     #Linx.Netlink.Rtnl.Rule<from=10.0.0.0/24 table=100>]

:ok = Rule.delete(sock, from: "10.0.0.0/24", table: 100)

The wire format — struct fib_rule_hdr and the FRA_* attributes (include/uapi/linux/fib_rules.h) — is declared with the Linx.Netlink.Codec DSL.

Summary

Types

t()

Functions

add(socket, opts)

Adds a policy-routing rule.

decode(body)

Decodes a netlink message body into a t/0.

delete(socket, opts)

Deletes the policy-routing rule matching opts (same shape as add/2).

encode(message)

Encodes a t/0 into its netlink message body.

list(socket)

Lists every policy-routing rule in the socket's network namespace.

target_table(rule)

Returns the routing-table number this rule points to.