2 ###############################################################################
4 # IPFire.org - A linux based firewall #
5 # Copyright (C) 2010 Michael Tremer & Christian Schmidt #
7 # This program is free software: you can redistribute it and/or modify #
8 # it under the terms of the GNU General Public License as published by #
9 # the Free Software Foundation, either version 3 of the License, or #
10 # (at your option) any later version. #
12 # This program is distributed in the hope that it will be useful, #
13 # but WITHOUT ANY WARRANTY; without even the implied warranty of #
14 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
15 # GNU General Public License for more details. #
17 # You should have received a copy of the GNU General Public License #
18 # along with this program. If not, see <http://www.gnu.org/licenses/>. #
20 ###############################################################################
22 .
/usr
/lib
/network
/header-zone
24 HOOK_MANPAGE
="network-zone-bridge"
26 HOOK_SETTINGS
="HOOK STP STP_FORWARD_DELAY STP_HELLO STP_MAXAGE STP_MODE"
27 HOOK_SETTINGS
="${HOOK_SETTINGS} STP_PRIORITY MAC MTU"
29 HOOK_PORT_SETTINGS
="COST PRIORITY"
41 function hook_check
() {
44 assert isoneof STP_MODE stp rstp
45 assert isinteger STP_HELLO
46 assert isinteger STP_FORWARD_DELAY
47 assert isinteger STP_PRIORITY
51 function hook_parse_cmdline
() {
52 while [ $# -gt 0 ]; do
58 STP_MODE
=${1#--stp-mode=}
61 STP_HELLO
=${1#--stp-hello=}
63 --stp-forward-delay=*)
64 STP_FORWARD_DELAY
=${1#--stp-forward-delay=}
67 STP_PRIORITY
=${1#--stp-priority=}
76 warning
"Ignoring unknown option '${1}'"
87 zone_config_read
${zone}
89 # Create the bridge if it does not already exist.
90 if ! device_exists
${zone}; then
91 bridge_create
${zone} \
92 --address=${MAC} --mtu=${MTU}
94 # Adjust MAC address and MTU if needed.
96 device_set_address
${zone} ${MAC}
97 device_set_mtu
${zone} ${MTU}
104 if [ -n "${STP_FORWARD_DELAY}" ]; then
105 stp_bridge_set_forward_delay
${zone} ${STP_FORWARD_DELAY}
108 if [ -n "${STP_HELLO}" ]; then
109 stp_bridge_set_hello_time
${zone} ${STP_HELLO}
112 if [ -n "${STP_MAXAGE}" ]; then
113 stp_bridge_set_max_age
${zone} ${STP_MAXAGE}
116 if [ -n "${STP_PRIORITY}" ]; then
117 stp_bridge_set_priority
${zone} ${STP_PRIORITY}
123 device_set_up
${zone}
125 # XXX Currently, there is a bug (in the linux kernel?) that we need to
126 # set our bridges to promisc mode.
127 device_set_promisc
${zone} on
130 zone_ports_up
${zone}
131 zone_configs_up
${zone}
136 function hook_down
() {
140 if ! device_is_up
${zone}; then
141 warning
"Zone '${zone}' is not up"
145 zone_configs_down
${zone}
146 zone_ports_down
${zone}
148 # XXX See remark in _up().
149 device_set_promisc
${zone} off
151 device_set_down
${zone}
152 bridge_delete
${zone}
157 function hook_status
() {
161 # Print the default header.
162 cli_device_headline
${zone}
164 # Exit if zone is down
165 if ! zone_is_up
${zone}; then
170 cli_headline
2 "Spanning Tree Protocol information"
171 if stp_is_enabled
${zone}; then
172 local proto
=$
(stp_bridge_get_protocol
${zone})
174 cli_print_fmt1
2 "Version" "$(stp_get_name ${proto})"
175 cli_print_fmt1
2 "ID" "$(stp_bridge_get_id ${zone})"
176 cli_print_fmt1
2 "Priority" "$(stp_bridge_get_priority ${zone})"
178 if stp_bridge_is_root
${zone}; then
179 cli_print
2 "This bridge is root."
181 cli_print_fmt1
2 "Designated root" \
182 "$(stp_bridge_get_designated_root ${zone})"
183 cli_print_fmt1
2 "Root path cost" \
184 "$(stp_bridge_get_root_path_cost ${zone})"
188 # Topology information
189 cli_print_fmt1
2 "Topology changing" \
190 "$(stp_bridge_get_topology_change_detected ${zone})"
191 cli_print_fmt1
2 "Topology change time" \
192 "$(beautify_time $(stp_bridge_get_topology_change_timer ${zone}))"
193 cli_print_fmt1
2 "Topology change count" \
194 "$(stp_bridge_get_topology_change_count ${zone})"
197 cli_print
2 "Disabled"
201 cli_headline
2 "Ports"
202 zone_ports_status
${zone}
205 cli_headline
2 "Configurations"
206 zone_configs_cmd status
${zone}
212 function __parse_cmdline_args
() {
213 while [ $# -gt 0 ]; do
216 PRIORITY
="$(cli_get_val ${1})"
219 COST
="$(cli_get_val ${1})"
228 function hook_port_add
() {
229 # Excepting at least two arguments here
236 __parse_cmdline_args
"$@"
237 [ $?
-eq ${EXIT_OK} ] ||
return ${EXIT_ERROR}
239 config_write
"$(zone_dir "${zone}")/ports/${port}" ${HOOK_PORT_SETTINGS}
241 log INFO
"Port '${port}' has been added to zone '${zone}'"
246 function hook_port_edit
() {
253 config_read
"$(zone_dir "${zone}")/ports/${port}" ${HOOK_PORT_SETTINGS}
255 __parse_cmdline_args
"$@"
256 [ $?
-eq ${EXIT_OK} ] ||
return ${EXIT_ERROR}
258 config_write
"$(zone_dir "${zone}")/ports/${port}" ${HOOK_PORT_SETTINGS}
260 log INFO
"Port '${port}' (member of zone '${zone}') has been edited"
265 function hook_port_remove
() {
271 # Shut down the port (if possible)
274 log INFO
"Port '${port}' has been removed from zone '${zone}'"
275 config_remove
"$(zone_dir "${zone}")/ports/${port}"
280 function hook_port_up
() {
286 config_read
"$(zone_dir "${zone}")/ports/${port}" ${HOOK_PORT_SETTINGS}
290 # Set same MTU to device that the bridge has got
291 device_set_mtu
"${port}" $
(device_get_mtu
"${zone}")
293 bridge_attach_device
"${zone}" "${port}"
296 stp_port_set_cost
"${zone}" "${port}" "${COST}"
299 # TODO Apply priority (#10609)
304 function hook_port_down
() {
310 bridge_detach_device
"${zone}" "${port}"
317 function hook_port_status
() {
323 # Do nothing for devices which are not up and running.
324 device_exists
"${port}" ||
exit ${EXIT_OK}
328 # Check if the device is down.
329 if ! device_is_up
"${port}"; then
330 status
="${MSG_DEVICE_STATUS_DOWN}"
332 # Check if the device has no carrier.
333 elif ! device_has_carrier
"${port}"; then
334 status
="${MSG_DEVICE_STATUS_NOCARRIER}"
336 # Check for STP information.
337 elif stp_is_enabled
"${zone}"; then
338 local state
="$(stp_port_get_state "${zone}" "${port}")"
339 state
="MSG_STP_${state}"
342 status
="${status} - DSR: $(stp_port_get_designated_root "${zone}" "${port}")"
343 status="${status} - Cost: $(stp_port_get_cost "${zone}" "${port}")"
345 status
="${MSG_DEVICE_STATUS_UP}"
347 cli_statusline
3 "${port}" "${status}"