Expand description
Network policy model and rule matching.
Policy types use first-match-wins semantics. Rules are evaluated in order against packet headers. Domain-based rules rely on a DNS pin set to map destination IPs back to domain names.
Re-exports§
pub use destination::*;
Modules§
- destination
- Destination group matching: maps
DestinationGroupvariants to concrete IP ranges for loopback, private, link-local, metadata, and multicast.
Structs§
- Network
Policy - Network policy with ordered rules.
- Port
Range - Port range for matching.
- Rule
- A single network rule.
Enums§
- Action
- Action to take on matched traffic.
- Destination
- Traffic destination specification.
- Destination
Group - Pre-defined destination groups.
- Direction
- Traffic direction.
- Protocol
- Protocol filter.