Expand description
Declarative API for Host Network Management Nmstate is a library with an accompanying command line tool that manages host networking settings in a declarative manner. The networking state is described by a pre-defined schema. Reporting of current state and changes to it (desired state) both conform to the schema.
Nmstate is aimed to satisfy enterprise needs to manage host networking through a northbound declarative API and multi provider support on the southbound. NetworkManager acts as the main provider supported to provide persistent network configuration after reboot. Kernel mode is also provided as tech-preview to apply network configurations without NetworkManager.
The NetworkState and its subordinates are all implemented the serde
Deserialize and Serialize, instead of building up NetworkState
manually, you may deserialize it from file(e.g. JSON, YAML and etc).
§Features
The nmstate crate has these cargo features:
gen_conf– Generate offline network configures.query_apply– Query and apply network state.
By default, both features are enabled.
The gen_conf feature is only supported on Linux platform.
The query_apply feature is supported and tested on both Linux and MacOS.
§Examples
To retrieve current network state:
use nmstate::NetworkState;
fn main() -> Result<(), Box<dyn std::error::Error>> {
let mut net_state = NetworkState::new();
// Use kernel mode
net_state.set_kernel_only(true);
net_state.retrieve()?;
println!("{}", serde_yaml::to_string(&net_state)?);
Ok(())
}To apply network configuration(e.g. Assign static IP to eth1):
use nmstate::NetworkState;
fn main() -> Result<(), Box<dyn std::error::Error>> {
let mut net_state: NetworkState = serde_yaml::from_str(
r#"---
interfaces:
- name: eth1
type: ethernet
state: up
mtu: 1500
ipv4:
address:
- ip: 192.0.2.252
prefix-length: 24
- ip: 192.0.2.251
prefix-length: 24
dhcp: false
enabled: true
ipv6:
address:
- ip: 2001:db8:2::1
prefix-length: 64
- ip: 2001:db8:1::1
prefix-length: 64
autoconf: false
dhcp: false
enabled: true
"#,
)?;
net_state.set_kernel_only(true);
net_state.apply()?;
Ok(())
}Structs§
- AltName
Entry - Base
Interface - Information shared among all interface types
- Bond
Config - Bond
Interface - Bond interface.
- Bond
Options - Bond
Port Config - Bridge
Port Vlan Config - Bridge VLAN filtering configuration
- Bridge
Port Vlan Range - Dispatch
Config - DnsClient
State - DNS Client state
- DnsState
- DNS resolver state. Example partial yaml output of [NetworkState] with static DNS config:
- Dummy
Interface - Dummy interface. Only contain information of BaseInterface.
Example yaml outpuf of
[crate::NetworkState]with dummy interface: - Ethernet
Config - Ethernet
Interface - Ethernet(IEEE 802.3) interface. Besides BaseInterface, optionally could hold EthernetConfig and/or VethConfig. The yaml output of crate::NetworkState containing ethernet interface would be:
- Ethtool
Coalesce Config - Ethtool
Config - The ethtool configurations. The yaml output of crate::NetworkState containing ethtool information of an ethernet interface would be:
- Ethtool
Feature Config - Ethtool
FecConfig - Ethtool
Pause Config - Ethtool
Ring Config - Host
Name State - HsrConfig
- HsrInterface
- HSR interface. The example YAML output of a crate::NetworkState with an HSR interface would be:
- Ieee8021X
Config - The IEEE 802.1X authentication configuration. The example yaml output of crate::NetworkState with IEEE 802.1X authentication interface:
- Infini
Band Config - Infini
Band Interface - IP over InfiniBand interface. The example yaml output of a crate::NetworkState with an infiniband interface would be:
- Interface
IpAddr - Interface
Ipv4 - IPv4 configuration of interface. Example YAML output of interface holding static IPv4:
- Interface
Ipv6 - IPv6 configurations of interface. Example output of interface holding automatic IPv6 settings:
- Interfaces
- Represent a list of Interface.
- IpVlan
Config - IpVlan
Interface - Linux kernel IPVLAN interface. The example YAML output of crate::NetworkState with an IPVLAN interface would be:
- Ipsec
Interface - The libreswan Ipsec interface.
- Libreswan
Config - Linux
Bridge Config - Linux bridge specific configuration.
- Linux
Bridge Interface - Bridge interface provided by linux kernel.
- Linux
Bridge Options - Linux
Bridge Port Config - Linux
Bridge StpOptions - Lldp
Chassis Id - Lldp
Config - Lldp
MacPhy - Lldp
MaxFrame Size - Lldp
Mgmt Addr - Lldp
Mgmt Addrs - Lldp
Port Id - Lldp
Ppvids - Lldp
System Capabilities - Lldp
System Description - Lldp
System Name - Lldp
Vlan - Lldp
Vlans - Loopback
Interface - Loopback interface. Only contain information of BaseInterface. Limitations
- MacSec
Config - MacSec
Interface - MACsec interface. The example YAML output of a crate::NetworkState with an MACsec interface would be:
- MacVlan
Config - MacVlan
Interface - Linux kernel MAC VLAN interface. The example yaml output of crate::NetworkState with a mac vlan interface would be:
- MacVtap
Config - MacVtap
Interface - Linux kernel MAC VTAP interface. The example output of crate::NetworkState with a mac vtap interface would be:
- Mptcp
Config - Network
Capture Rules - Network
Policy - Network
State - The NetworkState represents the whole network state including both kernel status and configurations provides by backends(NetworkManager, OpenvSwitch databas, and etc).
- Network
State Template - Nmstate
Error - Nmstate
Statistic - OvnBridge
Mapping - OvnConfiguration
- Global OVN bridge mapping configuration. Example yaml output of crate::NetworkState:
- OvsBridge
Bond Config - The example yaml output of OVS bond:
- OvsBridge
Bond Port Config - OvsBridge
Config - OvsBridge
Interface - OpenvSwitch bridge interface. Example yaml output of crate::NetworkState with an OVS bridge:
- OvsBridge
Options - OvsBridge
Port Config - OvsDb
Global Config - OvsDb
Iface Config - OvsDpdk
Config - OvsInterface
- OpenvSwitch internal interface. Example yaml output of crate::NetworkState with an DPDK enabled OVS interface:
- OvsPatch
Config - PciAddress
- Route
Entry - Route entry
- Route
Rule Entry - Route
Rules - Routing rules
- Routes
- IP routing status
- SrIov
Config - Single Root I/O Virtualization(SRIOV) configuration. The example yaml output of crate::NetworkState with SR-IOV enabled ethernet interface would be:
- SrIov
VfConfig - Unknown
Interface - Holder for interface with known interface type defined. During apply action, nmstate can resolve unknown interface to first found interface type.
- Veth
Config - Vlan
Config - Vlan
Interface - Linux kernel VLAN interface. The example yaml output of crate::NetworkState with a VLAN interface would be:
- Vlan
QosMapping - VLAN QoS Mapping Mapping between linux internal packet priority and VLAN header priority for incoming or outgoing packet.
- VrfConfig
- VrfInterface
- Linux kernel Virtual Routing and Forwarding(VRF) interface. The example yaml output of a crate::NetworkState with a VRF interface would be:
- Vxlan
Config - Vxlan
Interface - Linux kernel VxLAN interface. The example yaml output of crate::NetworkState with a VxLAN interface would be:
- Xfrm
Interface
Enums§
- Address
Family - AltName
State - Bond
AdSelect - Specifies the 802.3ad aggregation selection logic to use.
- Bond
AllPorts Active - Equal to kernel
all_slaves_activeoption. Specifies that duplicate frames (received on inactive ports) should be dropped (0) or delivered (1). - Bond
ArpAll Targets - The
arp_all_targetskernel bond option. - Bond
ArpValidate - The
arp_validatekernel bond option. - Bond
Fail Over Mac - The
fail_over_mackernel bond option. - Bond
Lacp Rate - Option specifying the rate in which we’ll ask our link partner to transmit LACPDU packets in 802.3ad mode
- Bond
Mode - Bond mode
- Bond
Primary Reselect - The
primary_reselectkernel bond option. - Bond
Xmit Hash Policy - The
xmit_hash_policykernel bond option. - Bridge
Port Trunk Tag - Bridge
Port Vlan Mode - Dhcpv4
Client Id - DHCPv4 client ID
- Dhcpv6
Duid - DHCPv6 Unique Identifier
- Error
Kind - Ethernet
Duplex - Ethtool
FecMode - HsrProtocol
- Infini
Band Mode - Interface
- Represent a kernel or user space network interface.
- Interface
Identifier - Interface Identifier defines the method for network backend on matching network interface
- Interface
State - The state of interface
- Interface
Type - Interface type
- IpVlan
Mode - Ipv6
Addr GenMode - IPv6 address generation mode
- Libreswan
Address Family - Libreswan
Connection Type - Linux
Bridge Multicast Router Type - Lldp
Address Family - Lldp
Chassis IdType - Lldp
Neighbor Tlv - Lldp
Port IdType - Lldp
System Capability - MacSec
Offload - MacSec
Validate - MacVlan
Mode - MacVtap
Mode - Mptcp
Address Flag - Nmstate
Feature - OvnBridge
Mapping State - OvsBridge
Bond Mode - Route
Rule Action - Route
Rule State - Route
State - Route
Type - Vlan
Protocol - Vlan
Registration Protocol - WaitIp
- Which IP stack should network backend wait before considering the interface activation finished.