.\" Automatically generated man page, do not edit .TH KNET_HANDLE_ENABLE_ACCESS_LISTS 3 2023-09-27 "kronosnet" "Kronosnet Programmer's Manual" .SH NAME knet_handle_enable_access_lists \- Enable or disable usage of access lists (default: off) .SH SYNOPSIS .nf .B #include .sp \fBint knet_handle_enable_access_lists\fP( \fBknet_handle_t \fP\fIknet_h\fP, \fBunsigned int \fP\fIenabled\fP ); .fi .SH DESCRIPTION .PP knet_handle_enable_access_lists .PP knet_h - pointer to knet_handle_t .PP enable - set to 1 to use access lists, 0 to disable access_lists. .PP access lists are bound to links. There are 2 types of links: 1) point to point, where both source and destinations are well known at configuration time. 2) open links, where only the source is known at configuration time. .PP knet will automatically generate access lists for point to point links. .PP For open links, knet provides 4 API calls to manipulate access lists: knet_link_add_acl(3), knet_link_rm_acl(3), knet_link_insert_acl(3) and knet_link_clear_acl(3). Those API calls will work exclusively on open links as they are of no use on point to point links. .PP knet will not enforce any access list unless specifically enabled by knet_handle_enable_access_lists(3). .PP From a security / programming perspective we recommend:create the knet handle .PP enable access lists .PP configure hosts and links .PP configure access lists for open links .RE .SH RETURN VALUE .PP knet_handle_enable_access_lists returns 0 on success -1 on error and errno is set. .PP .SH SEE ALSO .PP .nh .ad l \fIknet_handle_remove_datafd\fR(3), \fIknet_handle_get_stats\fR(3), \fIknet_host_add\fR(3), \fIknet_handle_pmtud_setfreq\fR(3), \fIknet_handle_pmtud_get\fR(3), \fIknet_handle_crypto_use_config\fR(3), \fIknet_host_get_id_by_host_name\fR(3), \fIknet_host_get_status\fR(3), \fIknet_link_add_acl\fR(3), \fIknet_link_get_pong_count\fR(3), \fIknet_link_get_priority\fR(3), \fIknet_handle_free\fR(3), \fIknet_handle_enable_sock_notify\fR(3), \fIknet_handle_get_datafd\fR(3), \fIknet_recv\fR(3), \fIknet_link_get_ping_timers\fR(3), \fIknet_log_get_subsystem_id\fR(3), \fIknet_host_remove\fR(3), \fIknet_host_enable_status_change_notify\fR(3), \fIknet_strtoaddr\fR(3), \fIknet_link_rm_acl\fR(3), \fIknet_send\fR(3), \fIknet_handle_enable_pmtud_notify\fR(3), \fIknet_handle_get_transport_reconnect_interval\fR(3), \fIknet_link_get_enable\fR(3), \fIknet_link_set_priority\fR(3), \fIknet_log_set_loglevel\fR(3), \fIknet_handle_get_channel\fR(3), \fIknet_link_get_config\fR(3), \fIknet_link_get_link_list\fR(3), \fIknet_get_transport_list\fR(3), \fIknet_get_transport_id_by_name\fR(3), \fIknet_log_get_loglevel_id\fR(3), \fIknet_handle_new_ex\fR(3), \fIknet_host_set_name\fR(3), \fIknet_addrtostr\fR(3), \fIknet_handle_setfwd\fR(3), \fIknet_get_compress_list\fR(3), \fIknet_host_set_policy\fR(3), \fIknet_get_transport_name_by_id\fR(3), \fIknet_handle_enable_filter\fR(3), \fIknet_handle_crypto_rx_clear_traffic\fR(3), \fIknet_handle_compress\fR(3), \fIknet_link_get_status\fR(3), \fIknet_handle_add_datafd\fR(3), \fIknet_send_sync\fR(3), \fIknet_log_get_loglevel_name\fR(3), \fIknet_host_get_host_list\fR(3), \fIknet_host_get_policy\fR(3), \fIknet_link_set_enable\fR(3), \fIknet_link_set_pong_count\fR(3), \fIknet_log_get_subsystem_name\fR(3), \fIknet_host_get_name_by_host_id\fR(3), \fIknet_link_clear_config\fR(3), \fIknet_log_get_loglevel\fR(3), \fIknet_handle_new\fR(3), \fIknet_handle_pmtud_getfreq\fR(3), \fIknet_handle_pmtud_set\fR(3), \fIknet_handle_clear_stats\fR(3), \fIknet_link_set_config\fR(3), \fIknet_handle_crypto_set_config\fR(3), \fIknet_handle_crypto\fR(3), \fIknet_get_crypto_list\fR(3), \fIknet_handle_set_transport_reconnect_interval\fR(3), \fIknet_link_clear_acl\fR(3), \fIknet_link_set_ping_timers\fR(3), \fIknet_link_insert_acl\fR(3) .ad .hy .SH "COPYRIGHT" .PP Copyright (C) 2010-2023 Red Hat, Inc. All rights reserved.