Interface FilterChainMatchOrBuilder
-
- All Superinterfaces:
com.google.protobuf.MessageLiteOrBuilder
,com.google.protobuf.MessageOrBuilder
- All Known Implementing Classes:
FilterChainMatch
,FilterChainMatch.Builder
public interface FilterChainMatchOrBuilder extends com.google.protobuf.MessageOrBuilder
-
-
Method Summary
All Methods Instance Methods Abstract Methods Modifier and Type Method Description java.lang.String
getAddressSuffix()
If non-empty, an IP address and suffix length to match addresses when the listener is bound to 0.0.0.0/:: or when use_original_dst is specified.com.google.protobuf.ByteString
getAddressSuffixBytes()
If non-empty, an IP address and suffix length to match addresses when the listener is bound to 0.0.0.0/:: or when use_original_dst is specified.java.lang.String
getApplicationProtocols(int index)
If non-empty, a list of application protocols (e.g.com.google.protobuf.ByteString
getApplicationProtocolsBytes(int index)
If non-empty, a list of application protocols (e.g.int
getApplicationProtocolsCount()
If non-empty, a list of application protocols (e.g.java.util.List<java.lang.String>
getApplicationProtocolsList()
If non-empty, a list of application protocols (e.g.com.google.protobuf.UInt32Value
getDestinationPort()
Optional destination port to consider when use_original_dst is set on the listener in determining a filter chain match.com.google.protobuf.UInt32ValueOrBuilder
getDestinationPortOrBuilder()
Optional destination port to consider when use_original_dst is set on the listener in determining a filter chain match.CidrRange
getDirectSourcePrefixRanges(int index)
The criteria is satisfied if the directly connected source IP address of the downstream connection is contained in at least one of the specified subnets.int
getDirectSourcePrefixRangesCount()
The criteria is satisfied if the directly connected source IP address of the downstream connection is contained in at least one of the specified subnets.java.util.List<CidrRange>
getDirectSourcePrefixRangesList()
The criteria is satisfied if the directly connected source IP address of the downstream connection is contained in at least one of the specified subnets.CidrRangeOrBuilder
getDirectSourcePrefixRangesOrBuilder(int index)
The criteria is satisfied if the directly connected source IP address of the downstream connection is contained in at least one of the specified subnets.java.util.List<? extends CidrRangeOrBuilder>
getDirectSourcePrefixRangesOrBuilderList()
The criteria is satisfied if the directly connected source IP address of the downstream connection is contained in at least one of the specified subnets.CidrRange
getPrefixRanges(int index)
If non-empty, an IP address and prefix length to match addresses when the listener is bound to 0.0.0.0/:: or when use_original_dst is specified.int
getPrefixRangesCount()
If non-empty, an IP address and prefix length to match addresses when the listener is bound to 0.0.0.0/:: or when use_original_dst is specified.java.util.List<CidrRange>
getPrefixRangesList()
If non-empty, an IP address and prefix length to match addresses when the listener is bound to 0.0.0.0/:: or when use_original_dst is specified.CidrRangeOrBuilder
getPrefixRangesOrBuilder(int index)
If non-empty, an IP address and prefix length to match addresses when the listener is bound to 0.0.0.0/:: or when use_original_dst is specified.java.util.List<? extends CidrRangeOrBuilder>
getPrefixRangesOrBuilderList()
If non-empty, an IP address and prefix length to match addresses when the listener is bound to 0.0.0.0/:: or when use_original_dst is specified.java.lang.String
getServerNames(int index)
If non-empty, a list of server names (e.g.com.google.protobuf.ByteString
getServerNamesBytes(int index)
If non-empty, a list of server names (e.g.int
getServerNamesCount()
If non-empty, a list of server names (e.g.java.util.List<java.lang.String>
getServerNamesList()
If non-empty, a list of server names (e.g.int
getSourcePorts(int index)
The criteria is satisfied if the source port of the downstream connection is contained in at least one of the specified ports.int
getSourcePortsCount()
The criteria is satisfied if the source port of the downstream connection is contained in at least one of the specified ports.java.util.List<java.lang.Integer>
getSourcePortsList()
The criteria is satisfied if the source port of the downstream connection is contained in at least one of the specified ports.CidrRange
getSourcePrefixRanges(int index)
The criteria is satisfied if the source IP address of the downstream connection is contained in at least one of the specified subnets.int
getSourcePrefixRangesCount()
The criteria is satisfied if the source IP address of the downstream connection is contained in at least one of the specified subnets.java.util.List<CidrRange>
getSourcePrefixRangesList()
The criteria is satisfied if the source IP address of the downstream connection is contained in at least one of the specified subnets.CidrRangeOrBuilder
getSourcePrefixRangesOrBuilder(int index)
The criteria is satisfied if the source IP address of the downstream connection is contained in at least one of the specified subnets.java.util.List<? extends CidrRangeOrBuilder>
getSourcePrefixRangesOrBuilderList()
The criteria is satisfied if the source IP address of the downstream connection is contained in at least one of the specified subnets.FilterChainMatch.ConnectionSourceType
getSourceType()
Specifies the connection source IP match type.int
getSourceTypeValue()
Specifies the connection source IP match type.com.google.protobuf.UInt32Value
getSuffixLen()
[#not-implemented-hide:]com.google.protobuf.UInt32ValueOrBuilder
getSuffixLenOrBuilder()
[#not-implemented-hide:]java.lang.String
getTransportProtocol()
If non-empty, a transport protocol to consider when determining a filter chain match.com.google.protobuf.ByteString
getTransportProtocolBytes()
If non-empty, a transport protocol to consider when determining a filter chain match.boolean
hasDestinationPort()
Optional destination port to consider when use_original_dst is set on the listener in determining a filter chain match.boolean
hasSuffixLen()
[#not-implemented-hide:]-
Methods inherited from interface com.google.protobuf.MessageOrBuilder
findInitializationErrors, getAllFields, getDefaultInstanceForType, getDescriptorForType, getField, getInitializationErrorString, getOneofFieldDescriptor, getRepeatedField, getRepeatedFieldCount, getUnknownFields, hasField, hasOneof
-
-
-
-
Method Detail
-
hasDestinationPort
boolean hasDestinationPort()
Optional destination port to consider when use_original_dst is set on the listener in determining a filter chain match.
.google.protobuf.UInt32Value destination_port = 8 [(.validate.rules) = { ... }
- Returns:
- Whether the destinationPort field is set.
-
getDestinationPort
com.google.protobuf.UInt32Value getDestinationPort()
Optional destination port to consider when use_original_dst is set on the listener in determining a filter chain match.
.google.protobuf.UInt32Value destination_port = 8 [(.validate.rules) = { ... }
- Returns:
- The destinationPort.
-
getDestinationPortOrBuilder
com.google.protobuf.UInt32ValueOrBuilder getDestinationPortOrBuilder()
Optional destination port to consider when use_original_dst is set on the listener in determining a filter chain match.
.google.protobuf.UInt32Value destination_port = 8 [(.validate.rules) = { ... }
-
getPrefixRangesList
java.util.List<CidrRange> getPrefixRangesList()
If non-empty, an IP address and prefix length to match addresses when the listener is bound to 0.0.0.0/:: or when use_original_dst is specified.
repeated .envoy.config.core.v3.CidrRange prefix_ranges = 3;
-
getPrefixRanges
CidrRange getPrefixRanges(int index)
If non-empty, an IP address and prefix length to match addresses when the listener is bound to 0.0.0.0/:: or when use_original_dst is specified.
repeated .envoy.config.core.v3.CidrRange prefix_ranges = 3;
-
getPrefixRangesCount
int getPrefixRangesCount()
If non-empty, an IP address and prefix length to match addresses when the listener is bound to 0.0.0.0/:: or when use_original_dst is specified.
repeated .envoy.config.core.v3.CidrRange prefix_ranges = 3;
-
getPrefixRangesOrBuilderList
java.util.List<? extends CidrRangeOrBuilder> getPrefixRangesOrBuilderList()
If non-empty, an IP address and prefix length to match addresses when the listener is bound to 0.0.0.0/:: or when use_original_dst is specified.
repeated .envoy.config.core.v3.CidrRange prefix_ranges = 3;
-
getPrefixRangesOrBuilder
CidrRangeOrBuilder getPrefixRangesOrBuilder(int index)
If non-empty, an IP address and prefix length to match addresses when the listener is bound to 0.0.0.0/:: or when use_original_dst is specified.
repeated .envoy.config.core.v3.CidrRange prefix_ranges = 3;
-
getAddressSuffix
java.lang.String getAddressSuffix()
If non-empty, an IP address and suffix length to match addresses when the listener is bound to 0.0.0.0/:: or when use_original_dst is specified. [#not-implemented-hide:]
string address_suffix = 4;
- Returns:
- The addressSuffix.
-
getAddressSuffixBytes
com.google.protobuf.ByteString getAddressSuffixBytes()
If non-empty, an IP address and suffix length to match addresses when the listener is bound to 0.0.0.0/:: or when use_original_dst is specified. [#not-implemented-hide:]
string address_suffix = 4;
- Returns:
- The bytes for addressSuffix.
-
hasSuffixLen
boolean hasSuffixLen()
[#not-implemented-hide:]
.google.protobuf.UInt32Value suffix_len = 5;
- Returns:
- Whether the suffixLen field is set.
-
getSuffixLen
com.google.protobuf.UInt32Value getSuffixLen()
[#not-implemented-hide:]
.google.protobuf.UInt32Value suffix_len = 5;
- Returns:
- The suffixLen.
-
getSuffixLenOrBuilder
com.google.protobuf.UInt32ValueOrBuilder getSuffixLenOrBuilder()
[#not-implemented-hide:]
.google.protobuf.UInt32Value suffix_len = 5;
-
getDirectSourcePrefixRangesList
java.util.List<CidrRange> getDirectSourcePrefixRangesList()
The criteria is satisfied if the directly connected source IP address of the downstream connection is contained in at least one of the specified subnets. If the parameter is not specified or the list is empty, the directly connected source IP address is ignored.
repeated .envoy.config.core.v3.CidrRange direct_source_prefix_ranges = 13;
-
getDirectSourcePrefixRanges
CidrRange getDirectSourcePrefixRanges(int index)
The criteria is satisfied if the directly connected source IP address of the downstream connection is contained in at least one of the specified subnets. If the parameter is not specified or the list is empty, the directly connected source IP address is ignored.
repeated .envoy.config.core.v3.CidrRange direct_source_prefix_ranges = 13;
-
getDirectSourcePrefixRangesCount
int getDirectSourcePrefixRangesCount()
The criteria is satisfied if the directly connected source IP address of the downstream connection is contained in at least one of the specified subnets. If the parameter is not specified or the list is empty, the directly connected source IP address is ignored.
repeated .envoy.config.core.v3.CidrRange direct_source_prefix_ranges = 13;
-
getDirectSourcePrefixRangesOrBuilderList
java.util.List<? extends CidrRangeOrBuilder> getDirectSourcePrefixRangesOrBuilderList()
The criteria is satisfied if the directly connected source IP address of the downstream connection is contained in at least one of the specified subnets. If the parameter is not specified or the list is empty, the directly connected source IP address is ignored.
repeated .envoy.config.core.v3.CidrRange direct_source_prefix_ranges = 13;
-
getDirectSourcePrefixRangesOrBuilder
CidrRangeOrBuilder getDirectSourcePrefixRangesOrBuilder(int index)
The criteria is satisfied if the directly connected source IP address of the downstream connection is contained in at least one of the specified subnets. If the parameter is not specified or the list is empty, the directly connected source IP address is ignored.
repeated .envoy.config.core.v3.CidrRange direct_source_prefix_ranges = 13;
-
getSourceTypeValue
int getSourceTypeValue()
Specifies the connection source IP match type. Can be any, local or external network.
.envoy.config.listener.v3.FilterChainMatch.ConnectionSourceType source_type = 12 [(.validate.rules) = { ... }
- Returns:
- The enum numeric value on the wire for sourceType.
-
getSourceType
FilterChainMatch.ConnectionSourceType getSourceType()
Specifies the connection source IP match type. Can be any, local or external network.
.envoy.config.listener.v3.FilterChainMatch.ConnectionSourceType source_type = 12 [(.validate.rules) = { ... }
- Returns:
- The sourceType.
-
getSourcePrefixRangesList
java.util.List<CidrRange> getSourcePrefixRangesList()
The criteria is satisfied if the source IP address of the downstream connection is contained in at least one of the specified subnets. If the parameter is not specified or the list is empty, the source IP address is ignored.
repeated .envoy.config.core.v3.CidrRange source_prefix_ranges = 6;
-
getSourcePrefixRanges
CidrRange getSourcePrefixRanges(int index)
The criteria is satisfied if the source IP address of the downstream connection is contained in at least one of the specified subnets. If the parameter is not specified or the list is empty, the source IP address is ignored.
repeated .envoy.config.core.v3.CidrRange source_prefix_ranges = 6;
-
getSourcePrefixRangesCount
int getSourcePrefixRangesCount()
The criteria is satisfied if the source IP address of the downstream connection is contained in at least one of the specified subnets. If the parameter is not specified or the list is empty, the source IP address is ignored.
repeated .envoy.config.core.v3.CidrRange source_prefix_ranges = 6;
-
getSourcePrefixRangesOrBuilderList
java.util.List<? extends CidrRangeOrBuilder> getSourcePrefixRangesOrBuilderList()
The criteria is satisfied if the source IP address of the downstream connection is contained in at least one of the specified subnets. If the parameter is not specified or the list is empty, the source IP address is ignored.
repeated .envoy.config.core.v3.CidrRange source_prefix_ranges = 6;
-
getSourcePrefixRangesOrBuilder
CidrRangeOrBuilder getSourcePrefixRangesOrBuilder(int index)
The criteria is satisfied if the source IP address of the downstream connection is contained in at least one of the specified subnets. If the parameter is not specified or the list is empty, the source IP address is ignored.
repeated .envoy.config.core.v3.CidrRange source_prefix_ranges = 6;
-
getSourcePortsList
java.util.List<java.lang.Integer> getSourcePortsList()
The criteria is satisfied if the source port of the downstream connection is contained in at least one of the specified ports. If the parameter is not specified, the source port is ignored.
repeated uint32 source_ports = 7 [(.validate.rules) = { ... }
- Returns:
- A list containing the sourcePorts.
-
getSourcePortsCount
int getSourcePortsCount()
The criteria is satisfied if the source port of the downstream connection is contained in at least one of the specified ports. If the parameter is not specified, the source port is ignored.
repeated uint32 source_ports = 7 [(.validate.rules) = { ... }
- Returns:
- The count of sourcePorts.
-
getSourcePorts
int getSourcePorts(int index)
The criteria is satisfied if the source port of the downstream connection is contained in at least one of the specified ports. If the parameter is not specified, the source port is ignored.
repeated uint32 source_ports = 7 [(.validate.rules) = { ... }
- Parameters:
index
- The index of the element to return.- Returns:
- The sourcePorts at the given index.
-
getServerNamesList
java.util.List<java.lang.String> getServerNamesList()
If non-empty, a list of server names (e.g. SNI for TLS protocol) to consider when determining a filter chain match. Those values will be compared against the server names of a new connection, when detected by one of the listener filters. The server name will be matched against all wildcard domains, i.e. ``www.example.com`` will be first matched against ``www.example.com``, then ``*.example.com``, then ``*.com``. Note that partial wildcards are not supported, and values like ``*w.example.com`` are invalid. The value ``*`` is also not supported, and ``server_names`` should be omitted instead. .. attention:: See the :ref:`FAQ entry <faq_how_to_setup_sni>` on how to configure SNI for more information.
repeated string server_names = 11;
- Returns:
- A list containing the serverNames.
-
getServerNamesCount
int getServerNamesCount()
If non-empty, a list of server names (e.g. SNI for TLS protocol) to consider when determining a filter chain match. Those values will be compared against the server names of a new connection, when detected by one of the listener filters. The server name will be matched against all wildcard domains, i.e. ``www.example.com`` will be first matched against ``www.example.com``, then ``*.example.com``, then ``*.com``. Note that partial wildcards are not supported, and values like ``*w.example.com`` are invalid. The value ``*`` is also not supported, and ``server_names`` should be omitted instead. .. attention:: See the :ref:`FAQ entry <faq_how_to_setup_sni>` on how to configure SNI for more information.
repeated string server_names = 11;
- Returns:
- The count of serverNames.
-
getServerNames
java.lang.String getServerNames(int index)
If non-empty, a list of server names (e.g. SNI for TLS protocol) to consider when determining a filter chain match. Those values will be compared against the server names of a new connection, when detected by one of the listener filters. The server name will be matched against all wildcard domains, i.e. ``www.example.com`` will be first matched against ``www.example.com``, then ``*.example.com``, then ``*.com``. Note that partial wildcards are not supported, and values like ``*w.example.com`` are invalid. The value ``*`` is also not supported, and ``server_names`` should be omitted instead. .. attention:: See the :ref:`FAQ entry <faq_how_to_setup_sni>` on how to configure SNI for more information.
repeated string server_names = 11;
- Parameters:
index
- The index of the element to return.- Returns:
- The serverNames at the given index.
-
getServerNamesBytes
com.google.protobuf.ByteString getServerNamesBytes(int index)
If non-empty, a list of server names (e.g. SNI for TLS protocol) to consider when determining a filter chain match. Those values will be compared against the server names of a new connection, when detected by one of the listener filters. The server name will be matched against all wildcard domains, i.e. ``www.example.com`` will be first matched against ``www.example.com``, then ``*.example.com``, then ``*.com``. Note that partial wildcards are not supported, and values like ``*w.example.com`` are invalid. The value ``*`` is also not supported, and ``server_names`` should be omitted instead. .. attention:: See the :ref:`FAQ entry <faq_how_to_setup_sni>` on how to configure SNI for more information.
repeated string server_names = 11;
- Parameters:
index
- The index of the value to return.- Returns:
- The bytes of the serverNames at the given index.
-
getTransportProtocol
java.lang.String getTransportProtocol()
If non-empty, a transport protocol to consider when determining a filter chain match. This value will be compared against the transport protocol of a new connection, when it's detected by one of the listener filters. Suggested values include: * ``raw_buffer`` - default, used when no transport protocol is detected, * ``tls`` - set by :ref:`envoy.filters.listener.tls_inspector <config_listener_filters_tls_inspector>` when TLS protocol is detected.
string transport_protocol = 9;
- Returns:
- The transportProtocol.
-
getTransportProtocolBytes
com.google.protobuf.ByteString getTransportProtocolBytes()
If non-empty, a transport protocol to consider when determining a filter chain match. This value will be compared against the transport protocol of a new connection, when it's detected by one of the listener filters. Suggested values include: * ``raw_buffer`` - default, used when no transport protocol is detected, * ``tls`` - set by :ref:`envoy.filters.listener.tls_inspector <config_listener_filters_tls_inspector>` when TLS protocol is detected.
string transport_protocol = 9;
- Returns:
- The bytes for transportProtocol.
-
getApplicationProtocolsList
java.util.List<java.lang.String> getApplicationProtocolsList()
If non-empty, a list of application protocols (e.g. ALPN for TLS protocol) to consider when determining a filter chain match. Those values will be compared against the application protocols of a new connection, when detected by one of the listener filters. Suggested values include: * ``http/1.1`` - set by :ref:`envoy.filters.listener.tls_inspector <config_listener_filters_tls_inspector>`, * ``h2`` - set by :ref:`envoy.filters.listener.tls_inspector <config_listener_filters_tls_inspector>` .. attention:: Currently, only :ref:`TLS Inspector <config_listener_filters_tls_inspector>` provides application protocol detection based on the requested `ALPN <https://en.wikipedia.org/wiki/Application-Layer_Protocol_Negotiation>`_ values. However, the use of ALPN is pretty much limited to the HTTP/2 traffic on the Internet, and matching on values other than ``h2`` is going to lead to a lot of false negatives, unless all connecting clients are known to use ALPN.
repeated string application_protocols = 10;
- Returns:
- A list containing the applicationProtocols.
-
getApplicationProtocolsCount
int getApplicationProtocolsCount()
If non-empty, a list of application protocols (e.g. ALPN for TLS protocol) to consider when determining a filter chain match. Those values will be compared against the application protocols of a new connection, when detected by one of the listener filters. Suggested values include: * ``http/1.1`` - set by :ref:`envoy.filters.listener.tls_inspector <config_listener_filters_tls_inspector>`, * ``h2`` - set by :ref:`envoy.filters.listener.tls_inspector <config_listener_filters_tls_inspector>` .. attention:: Currently, only :ref:`TLS Inspector <config_listener_filters_tls_inspector>` provides application protocol detection based on the requested `ALPN <https://en.wikipedia.org/wiki/Application-Layer_Protocol_Negotiation>`_ values. However, the use of ALPN is pretty much limited to the HTTP/2 traffic on the Internet, and matching on values other than ``h2`` is going to lead to a lot of false negatives, unless all connecting clients are known to use ALPN.
repeated string application_protocols = 10;
- Returns:
- The count of applicationProtocols.
-
getApplicationProtocols
java.lang.String getApplicationProtocols(int index)
If non-empty, a list of application protocols (e.g. ALPN for TLS protocol) to consider when determining a filter chain match. Those values will be compared against the application protocols of a new connection, when detected by one of the listener filters. Suggested values include: * ``http/1.1`` - set by :ref:`envoy.filters.listener.tls_inspector <config_listener_filters_tls_inspector>`, * ``h2`` - set by :ref:`envoy.filters.listener.tls_inspector <config_listener_filters_tls_inspector>` .. attention:: Currently, only :ref:`TLS Inspector <config_listener_filters_tls_inspector>` provides application protocol detection based on the requested `ALPN <https://en.wikipedia.org/wiki/Application-Layer_Protocol_Negotiation>`_ values. However, the use of ALPN is pretty much limited to the HTTP/2 traffic on the Internet, and matching on values other than ``h2`` is going to lead to a lot of false negatives, unless all connecting clients are known to use ALPN.
repeated string application_protocols = 10;
- Parameters:
index
- The index of the element to return.- Returns:
- The applicationProtocols at the given index.
-
getApplicationProtocolsBytes
com.google.protobuf.ByteString getApplicationProtocolsBytes(int index)
If non-empty, a list of application protocols (e.g. ALPN for TLS protocol) to consider when determining a filter chain match. Those values will be compared against the application protocols of a new connection, when detected by one of the listener filters. Suggested values include: * ``http/1.1`` - set by :ref:`envoy.filters.listener.tls_inspector <config_listener_filters_tls_inspector>`, * ``h2`` - set by :ref:`envoy.filters.listener.tls_inspector <config_listener_filters_tls_inspector>` .. attention:: Currently, only :ref:`TLS Inspector <config_listener_filters_tls_inspector>` provides application protocol detection based on the requested `ALPN <https://en.wikipedia.org/wiki/Application-Layer_Protocol_Negotiation>`_ values. However, the use of ALPN is pretty much limited to the HTTP/2 traffic on the Internet, and matching on values other than ``h2`` is going to lead to a lot of false negatives, unless all connecting clients are known to use ALPN.
repeated string application_protocols = 10;
- Parameters:
index
- The index of the value to return.- Returns:
- The bytes of the applicationProtocols at the given index.
-
-