.\" Automatically generated man page, do not edit .TH knet_link_add_acl 3 2020-04-23 "kronosnet" "Kronosnet Programmer's Manual" .SH NAME knet_link_add_acl \- Add access list entry to an open link. .SH SYNOPSIS .nf .B #include .sp \fBint knet_link_add_acl\fP( \fBknet_handle_t \fP\fIknet_h\fP, \fBknet_node_id_t \fP\fIhost_id\fP, \fBuint8_t \fP\fIlink_id\fP, \fBstruct sockaddr_storage *\fP\fIss1\fP, \fBstruct sockaddr_storage *\fP\fIss2\fP, \fBcheck_type_t \fP\fItype\fP, \fBcheck_acceptreject_t \fP\fIacceptreject\fP ); .fi .SH DESCRIPTION .PP knet_link_add_acl .PP knet_h - pointer to knet_handle_t .PP host_id - see knet_host_add(3) .PP link_id - see knet_link_set_config(3) .PP ss1 / ss2 / type / acceptreject - see typedef definitions for details .PP IMPORTANT: the order in which access lists are added is critical and it is left to the user to add them in the right order. knet will not attempt to logically sort them. .PP For example: 1 - accept from 10.0.0.0/8 2 - reject from 10.0.0.1/32 .PP is not the same as: .PP 1 - reject from 10.0.0.1/32 2 - accept from 10.0.0.0/8 .PP In the first example, rule number 2 will never match because packets from 10.0.0.1 will be accepted by rule number 1. .SH STRUCTURES .nf \fB enum check_type_t { \fICHECK_TYPE_ADDRESS\fP; \fICHECK_TYPE_MASK\fP; \fICHECK_TYPE_RANGE\fP; }; \fP .fi .nf \fB enum check_acceptreject_t { \fICHECK_ACCEPT\fP; \fICHECK_REJECT\fP; }; \fP .fi .RE .SH RETURN VALUE .PP knet_link_add_acl returns 0 on success. -1 on error and errno is set. .SH SEE ALSO .PP .nh .ad l \fIknet_handle_remove_datafd(3), \fIknet_handle_get_stats(3), \fIknet_host_add(3), \fIknet_handle_pmtud_setfreq(3), \fIknet_handle_pmtud_get(3), \fIknet_host_get_id_by_host_name(3), \fIknet_host_get_status(3), \fIknet_link_get_pong_count(3), \fIknet_link_get_priority(3), \fIknet_handle_free(3), \fIknet_handle_enable_sock_notify(3), \fIknet_handle_get_datafd(3), \fIknet_recv(3), \fIknet_link_get_ping_timers(3), \fIknet_log_get_subsystem_id(3), \fIknet_host_remove(3), \fIknet_host_enable_status_change_notify(3), \fIknet_strtoaddr(3), \fIknet_link_rm_acl(3), \fIknet_send(3), \fIknet_handle_enable_pmtud_notify(3), \fIknet_handle_get_transport_reconnect_interval(3), \fIknet_link_get_enable(3), \fIknet_link_set_priority(3), \fIknet_log_set_loglevel(3), \fIknet_handle_get_channel(3), \fIknet_link_get_config(3), \fIknet_link_get_link_list(3), \fIknet_get_transport_list(3), \fIknet_get_transport_id_by_name(3), \fIknet_log_get_loglevel_id(3), \fIknet_handle_new_ex(3), \fIknet_host_set_name(3), \fIknet_addrtostr(3), \fIknet_handle_setfwd(3), \fIknet_get_compress_list(3), \fIknet_host_set_policy(3), \fIknet_get_transport_name_by_id(3), \fIknet_handle_enable_filter(3), \fIknet_handle_compress(3), \fIknet_link_get_status(3), \fIknet_handle_add_datafd(3), \fIknet_send_sync(3), \fIknet_log_get_loglevel_name(3), \fIknet_handle_enable_access_lists(3), \fIknet_host_get_host_list(3), \fIknet_host_get_policy(3), \fIknet_link_set_enable(3), \fIknet_link_set_pong_count(3), \fIknet_log_get_subsystem_name(3), \fIknet_host_get_name_by_host_id(3), \fIknet_link_clear_config(3), \fIknet_log_get_loglevel(3), \fIknet_handle_new(3), \fIknet_handle_pmtud_getfreq(3), \fIknet_handle_pmtud_set(3), \fIknet_handle_clear_stats(3), \fIknet_link_set_config(3), \fIknet_handle_crypto(3), \fIknet_get_crypto_list(3), \fIknet_handle_set_transport_reconnect_interval(3), \fIknet_link_clear_acl(3), \fIknet_link_set_ping_timers(3), \fIknet_link_insert_acl(3) .ad .hy .SH "COPYRIGHT" .PP Copyright (C) 2010-2020 Red Hat, Inc. All rights reserved.