Increase verbosity, add comments
This commit is contained in:
Raskaro
@@ -146,6 +146,7 @@ func handlePacket(pkt packet.Packet) {
|
|||||||
pkt.PermanentAccept()
|
pkt.PermanentAccept()
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
// TODO: Howto handle NetBios?
|
||||||
}
|
}
|
||||||
|
|
||||||
// log.Debugf("firewall: pkt %s has ID %s", pkt, pkt.GetLinkID())
|
// log.Debugf("firewall: pkt %s has ID %s", pkt, pkt.GetLinkID())
|
||||||
@@ -268,8 +269,9 @@ func initialHandler(pkt packet.Packet, link *network.Link) {
|
|||||||
// link.StopFirewallHandler()
|
// link.StopFirewallHandler()
|
||||||
// permanentVerdict(pkt, network.VerdictAccept)
|
// permanentVerdict(pkt, network.VerdictAccept)
|
||||||
case link.Inspect:
|
case link.Inspect:
|
||||||
|
log.Tracer(pkt.Ctx()).Trace("firewall: start inspecting")
|
||||||
link.SetFirewallHandler(inspectThenVerdict)
|
link.SetFirewallHandler(inspectThenVerdict)
|
||||||
inspectThenVerdict(pkt, link)
|
inspectThenVerdict(pkt, link) // TODO: corrent?: concurrently also called in link.SetFirewallHandler->go link.packetHandler()->fwH(pkt, link)
|
||||||
default:
|
default:
|
||||||
link.StopFirewallHandler()
|
link.StopFirewallHandler()
|
||||||
issueVerdict(pkt, link, 0, true)
|
issueVerdict(pkt, link, 0, true)
|
||||||
|
|||||||
@@ -64,7 +64,7 @@ func RunInspectors(pkt packet.Packet, link *network.Link) (network.Verdict, bool
|
|||||||
continue
|
continue
|
||||||
}
|
}
|
||||||
|
|
||||||
action := inspectors[key](pkt, link)
|
action := inspectors[key](pkt, link) // Actually run inspector
|
||||||
switch action {
|
switch action {
|
||||||
case DO_NOTHING:
|
case DO_NOTHING:
|
||||||
if verdict < network.VerdictAccept {
|
if verdict < network.VerdictAccept {
|
||||||
|
|||||||
Reference in New Issue
Block a user