Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2010-06-08 | nat: Fix the access-list-name command... | Holger Hans Peter Freyther | 1 | -2/+2 | |
We have added two commands with the same name to the tree.. the second one should have been the BSC... | |||||
2010-06-08 | nat: Add both entries to the tail to keep the order they are inserted | Holger Hans Peter Freyther | 1 | -2/+2 | |
2010-06-08 | nat: Allow to specify multiple entries in the access-list... | Holger Hans Peter Freyther | 2 | -17/+75 | |
Inside the access-list we have a list of entries that have either one allow or one deny rule... we do not allow to remove a single rule but one has to remove the whole list, in that case talloc will handle cleaning all entries. Right now the matching is O(n*m) as we traverse the list (multiple times) and run the regexp multiple times. One way to make it faster would be to concat all regexps into one. | |||||
2010-06-08 | nat: Shorten the access-list struct and method names (still way too long) | Holger Hans Peter Freyther | 2 | -19/+19 | |
2010-06-03 | [nat] Implement the removal of an access-list. | Holger Hans Peter Freyther | 2 | -0/+23 | |
2010-06-03 | [nat] Fix the parsing of the access-list regexp... | Holger Hans Peter Freyther | 1 | -2/+2 | |
We need to start at argv[1] for the regexp of this access-list, also subtract one from number of items.. | |||||
2010-06-03 | [nat] Fix VTY bug with access-lists... | Holger Hans Peter Freyther | 1 | -4/+2 | |
vty->index does not hold a BSC Config at this point as we are on the nat level... use the global _nat pointer for now... | |||||
2010-06-01 | [nat] Introduce the concept of access-list | Holger Hans Peter Freyther | 2 | -41/+122 | |
One can set one access-list to one BSC and one access-list to one NAT. The matching of IMSIs remains the same for now, also applying the white/blacklist. Access lists can not be deleted for now and no perf opt is done (e.g. one could cache the result of the last lookup in the bsc struct). | |||||
2010-05-31 | [nat] Add ip-tos option to the nat. | Holger Hans Peter Freyther | 2 | -0/+15 | |
This is applied to all incoming BSC connections. | |||||
2010-05-18 | msc: Add msc ip-tos NR option for the BSC | Holger Hans Peter Freyther | 1 | -1/+1 | |
Allow to set the TOS field via the VTY interface. The SO_PRIORITY was not used as it has no effect on the packets being sent (in contrast to the documentation). | |||||
2010-05-16 | [nat] Make the refusal more complicated to support more MSCs | Holger Hans Peter Freyther | 2 | -7/+52 | |
We will need to confirm the connection, then we can send the GSM48 message, then we need to close the connection... the embedding in the refusal method was way too easy.. | |||||
2010-05-16 | [nat] Make create_sccp_src_ref return the SCCP Connection. | Holger Hans Peter Freyther | 2 | -7/+8 | |
Right now it was not possible to just find a connection, by returning the connection that is created we will have direct access to it. It will be used by the local connection handling. | |||||
2010-05-16 | [nat] Remove parameter that is never accessed directly | Holger Hans Peter Freyther | 2 | -2/+2 | |
The msgb needs to be around when we access the parsed structure but that needs to be guranteed by the caller handing out the parsed structure. | |||||
2010-05-16 | [nat] Add the notion of a "local" connection. | Holger Hans Peter Freyther | 1 | -0/+7 | |
A local connection is only between the MUX and the real BSC. We will not forward anything to the MSC. This will be needed for the IMSI filtering as sending a CREF is not liked by every BSC... | |||||
2010-05-16 | [nat] Do not access the con after the removal | Holger Hans Peter Freyther | 1 | -3/+15 | |
In case of a RLC message we will destroy the SCCP connection. This means that accessing the con and con->bsc will access old memory. Keep the status local and move the con into an inner scope. | |||||
2010-05-16 | [nat] Send a GSM48 message within the reject message | Holger Hans Peter Freyther | 1 | -1/+19 | |
2010-05-16 | [nat] Move the SCCP CREF handling into a new method. | Holger Hans Peter Freyther | 1 | -7/+17 | |
We will need to generate messages with a proper reason and it is easier to do that from a dedicated method. | |||||
2010-05-16 | [nat] Use and print the connection type of a SCCP connection. | Holger Hans Peter Freyther | 3 | -1/+15 | |
2010-05-16 | [nat] Set the connection type/reason as out parameter | Holger Hans Peter Freyther | 2 | -2/+9 | |
We are analyzing each CR message and it is nice to know the reason these connections were created. Change the nat method. | |||||
2010-05-16 | [nat] Use the new gsm48 method to parse the MI followed by a classmark. | Holger Hans Peter Freyther | 1 | -22/+9 | |
2010-05-16 | [nat] Let IMSI DETACH and other messages pass by. | Holger Hans Peter Freyther | 1 | -3/+2 | |
2010-05-16 | [nat] Print on which BSC config this happend. | Holger Hans Peter Freyther | 1 | -2/+2 | |
2010-05-15 | [nat] Parse the PAGING RESPONSE inside a CR message as well. | Holger Hans Peter Freyther | 1 | -1/+29 | |
Now we are parsing a CM Service Request, Location Updating Request and the Paging Response. For all other messages we claim to not support it and force a refuse. | |||||
2010-05-15 | [nat] Check proto descriptor and the message type | Holger Hans Peter Freyther | 1 | -2/+4 | |
2010-05-15 | [nat] Add code to filter the CM Service Request by IMSI. | Holger Hans Peter Freyther | 1 | -0/+48 | |
The code should be shared among the GSM0408 implementation and this one, and like the LU we are not handling a TMSI properly as we have no idea where it is coming from. | |||||
2010-05-15 | [nat] Mention where the MSG is coming from. | Holger Hans Peter Freyther | 1 | -1/+1 | |
2010-05-15 | [sccp] Make it optional to send data on a SCCP Connection Refuse | Holger Hans Peter Freyther | 1 | -1/+1 | |
This can be used to send a Location Updating Reject down to the BSC when it is clear that a subscriber is not allowed. | |||||
2010-05-15 | [nat] Remove the imsi allow option on the nat level. | Holger Hans Peter Freyther | 2 | -23/+1 | |
For now we have: 1.) bsc imsi deny to deny at the BSC level 2.) bsc imsi allow to allow a SIM at the BSC level 3.) nat imsi deny to deny at the global level | |||||
2010-05-15 | [nat] Separate exit2/exit3 as this can not be shared... | Holger Hans Peter Freyther | 1 | -1/+6 | |
We have tried to send a refuse for arbitary things and ended up with a segfault... separate the exi2 and exit3 label to have separate exits and cleanups. | |||||
2010-05-15 | [nat] Add a token to the nat config and handle ID GET | Holger Hans Peter Freyther | 2 | -3/+29 | |
This allows to chain a nat with a nat by answering to the id get code and sending the token. | |||||
2010-05-14 | [nat] Add a regexp test command to the VTY. | Holger Hans Peter Freyther | 1 | -0/+19 | |
This allows to test the regexp to be used for allo/deny of the imsi filter. | |||||
2010-05-14 | [nat] Fix the imsi deny config write. | Holger Hans Peter Freyther | 1 | -1/+1 | |
2010-05-14 | [nat] We do not want to see the actual matches. | Holger Hans Peter Freyther | 1 | -5/+3 | |
2010-05-14 | [nat] Allow to set the description for the bsc. | Holger Hans Peter Freyther | 1 | -0/+21 | |
This will allow to add description to each BSC. | |||||
2010-05-14 | [nat] Implement IMSI filtering... | Holger Hans Peter Freyther | 1 | -6/+49 | |
2010-05-14 | [nat] Fix the size check of the LU Request. | Holger Hans Peter Freyther | 1 | -2/+3 | |
2010-05-14 | [nat] Make the string -> regexp parsing public | Holger Hans Peter Freyther | 2 | -18/+18 | |
This way it can be used from within a test case to test the regexps.. | |||||
2010-05-14 | nat: Add code to parse the SCCP optional data. | Holger Hans Peter Freyther | 1 | -3/+76 | |
First we have the Complete Layer3 Information, then we have the IE for the Layer3 information, then the GSM48 hdr, then the actual content with data. Right now we are parsing the LU but we are not filtering anything yet. | |||||
2010-05-14 | nat: Introduce a nat filter that is working on the CR message. | Holger Hans Peter Freyther | 2 | -0/+17 | |
Currently there is no implementation but the refusal code is in place and will send a refusal back to the BSC. | |||||
2010-05-14 | [nat] Use A.B.C.D for the IP address | Holger Hans Peter Freyther | 1 | -1/+1 | |
The VTY code will then be able to validate the IP Address. | |||||
2010-05-14 | [nat] Remove range checks inside the VTY command. | Holger Hans Peter Freyther | 1 | -6/+0 | |
The ranges are enforced by the VTY code. | |||||
2010-05-12 | abis: Pass the abis_om_obj_inst in the nm_state_event.. | Holger Hans Peter Freyther | 1 | -1/+2 | |
2010-05-12 | nat: Have a recycle timer that removes unconfirmed SCCP connections. | Holger Hans Peter Freyther | 1 | -0/+32 | |
The MSC does not respond to a SCCP CR with Paging Response as GSM payload, when the response comes in 'too late'. Prevent the MUX having stale connections and start removing old connections every 20 minutes. | |||||
2010-05-12 | nat: When we fail to reallocate... also close down the MGCP part | Holger Hans Peter Freyther | 1 | -0/+1 | |
Give the BSC a chanche to close down MGCP ports as well. | |||||
2010-05-12 | nat: Store the creation time of a sccp connection. | Holger Hans Peter Freyther | 1 | -0/+3 | |
Generate it when creating the connection but also when reusing an existing connection. | |||||
2010-05-11 | nat: Print the MSC status with a new vty command. | Holger Hans Peter Freyther | 2 | -15/+32 | |
2010-05-05 | nat: Using the right fd can be a good idea as well | Holger Hans Peter Freyther | 1 | -1/+1 | |
2010-05-05 | nat: Fix bad bug, make sure the fd is not overwritten.. | Holger Hans Peter Freyther | 1 | -11/+11 | |
The adding of the innocent looking code was actually overwrote the fd and then stupid things happened. Rename variables to avoid that. rc,ret should be scratch variables... | |||||
2010-05-05 | nat: Use TCP_NODELAY for the connection to the BSC. | Holger Hans Peter Freyther | 1 | -1/+7 | |
We do not want to use NAGLE for the BSC connection. | |||||
2010-05-05 | nat: Improve log messages. Refer to ip and fd. | Holger Hans Peter Freyther | 1 | -3/+6 | |