New API for network rules #59

slayercat · 2020-01-16T13:16:20Z

GET network_address_aliases_get - Returns address aliaes used by rules.
POST network_address_aliases_create - Creates An network aliaes for rules
POST network_address_aliases_update - Update a address aliaes. Returns newest result
POST network_address_aliases_delete - Delete a address aliaes. Returns newest result
GET filter_rules_get - Returns firewall filters.
POST filter_rules_create - Creates firewall filters.
POST filter_rules_delete - Deletes firewall filters.

Closes #50

Signed-off-by: lilinzhe [email protected]

network_address_aliases_get --- - Returns address aliaes used by rules. - HTTP: **GET** - Params: none *Example Request* ```bash curl \ -X GET \ --silent \ --insecure \ --header "fauxapi-auth: <auth-value>" \ "https://<host-address>/fauxapi/v1/?action=network_address_aliases_get" ``` *Example Response* ```javascript { "callid": "5e205fc052956", "action": "network_address_aliases_get", "message": "ok", "data": { "aliases": { "alias": [ { "name": "EasyRuleBlockHostsWAN", "type": "network", "address": "1.2.3.4/32 5.6.7.8/32", "descr": "Hosts blocked from Firewall Log view", "detail": "Entry added Fri, 27 Dec 2019 00:53:01 -0800||\u5df2\u6dfb\u52a0\u6761\u76ee Thu, 16 Jan 2020 03:42:37 -0800" } ] } } } ``` filter_rules_get --- - Returns address aliaes used by rules. - HTTP: **GET** - Params: none *Example Request* ```bash curl \ -X GET \ --silent \ --insecure \ --header "fauxapi-auth: <auth-value>" \ "https://<host-address>/fauxapi/v1/?action=filter_rules_get" ``` *Example Response* ```javascript { "callid": "5e2060797a602", "action": "filter_rules_get", "message": "ok", "data": { "filter": { "rules": [ { "id": "", "tracker": "1579178400", "type": "pass", "interface": "wan", "ipprotocol": "inet", "tag": "", "tagged": "", "max": "", "max-src-nodes": "", "max-src-conn": "", "max-src-states": "", "statetimeout": "", "statetype": "keep state", "os": "", "protocol": "tcp", "source": { "address": "1.2.1.1" }, "destination": { "any": "", "port": "1-65535" }, "descr": "", "updated": { "time": "1579178400", "username": "[email protected] (Local Database)" }, "created": { "time": "1579178400", "username": "[email protected] (Local Database)" } }, { "type": "block", "interface": "wan", "ipprotocol": "inet", "source": { "address": "EasyRuleBlockHostsWAN" }, "destination": { "any": "" }, "descr": "Easy Rule: Blocked from Firewall Log View", "created": { "time": "1577436781", "username": "Easy Rule" }, "tracker": "1577436781" }, { "type": "drop", "ipprotocol": "inet", "descr": "Default allow LAN to any rule", "interface": "lan", "source": { "network": "lan" }, "destination": { "ip": "192.10.1.1" } } ] } } } ``` Signed-off-by: lilinzhe <[email protected]>

Signed-off-by: lilinzhe <[email protected]>

Korvuss · 2020-03-26T07:34:08Z

would it be possible to merge this as its exactly what I am currently looking for !

slayercat · 2020-03-26T11:27:04Z

Hi, @Korvuss

You may want to review issues #56 .

Thanks.

ndejong · 2020-05-31T08:25:12Z

Hi @slayercat pardon the long delay in my getting to this.

The code is well written, but you are re-declaring the namespace in an unexpected location

fauxapi_pfsense_interface.inc - line 771
fauxapi_pfsense_interface.inc - line 773

This is messy and almost looks as if it is an accidental piece of code that has crept in at development time

Also - can you propose some tests for this? I'll add them to the Python client interface examples that get used in the test harness

slayercat changed the title ~~WIP: New API for network rules: network_address_aliases_get / filter_rule…~~ WIP: New API for network rules Jan 16, 2020

slayercat force-pushed the dev-rules-config branch from e9b5756 to e27c740 Compare January 16, 2020 13:21

slayercat changed the title ~~WIP: New API for network rules~~ New API for network rules Jan 19, 2020

slayercat force-pushed the dev-rules-config branch 3 times, most recently from 901bde5 to 80332b2 Compare January 19, 2020 06:40

slayercat added 5 commits January 22, 2020 13:21

Alias Management: create - network_address_aliases_create

140aec0

Signed-off-by: lilinzhe <[email protected]>

Alias Management: modify - network_address_aliases_update

f7fb111

Signed-off-by: lilinzhe <[email protected]>

Alias Management: delete - network_address_aliases_delete

ab2542e

Signed-off-by: lilinzhe <[email protected]>

Filter Rules Management: filter_rules_create / filter_rules_delele

8367013

Signed-off-by: lilinzhe <[email protected]>

slayercat force-pushed the dev-rules-config branch from 80332b2 to 8367013 Compare January 22, 2020 05:22

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

New API for network rules #59

New API for network rules #59

Uh oh!

slayercat commented Jan 16, 2020 •

edited

Loading

Uh oh!

Korvuss commented Mar 26, 2020

Uh oh!

slayercat commented Mar 26, 2020

Uh oh!

ndejong commented May 31, 2020

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

New API for network rules #59

Are you sure you want to change the base?

New API for network rules #59

Uh oh!

Conversation

slayercat commented Jan 16, 2020 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Korvuss commented Mar 26, 2020

Uh oh!

slayercat commented Mar 26, 2020

Uh oh!

ndejong commented May 31, 2020

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

slayercat commented Jan 16, 2020 •

edited

Loading