diff options
| author | Adam Ierymenko <adam.ierymenko@gmail.com> | 2016-07-28 10:58:10 -0700 |
|---|---|---|
| committer | Adam Ierymenko <adam.ierymenko@gmail.com> | 2016-07-28 10:58:10 -0700 |
| commit | 22e44c762bf77aefe988ed7b6874054f84f95b75 (patch) | |
| tree | a2d74fba00ad11308524be4561d065b4609cb774 /controller/schema.sql | |
| parent | 1e6e112806903009643aef0a2f3736821c1a54d2 (diff) | |
| download | infinitytier-22e44c762bf77aefe988ed7b6874054f84f95b75.tar.gz infinitytier-22e44c762bf77aefe988ed7b6874054f84f95b75.zip | |
More rules engine work: key/value pair matching for microsegmentation.
Diffstat (limited to 'controller/schema.sql')
| -rw-r--r-- | controller/schema.sql | 27 |
1 files changed, 9 insertions, 18 deletions
diff --git a/controller/schema.sql b/controller/schema.sql index 105db924..479daa68 100644 --- a/controller/schema.sql +++ b/controller/schema.sql @@ -96,24 +96,15 @@ CREATE UNIQUE INDEX Relay_networkId_address ON Relay (networkId,address); CREATE TABLE Rule ( networkId char(16) NOT NULL REFERENCES Network(id) ON DELETE CASCADE, + policyId varchar(32), ruleNo integer NOT NULL, - nodeId char(10) REFERENCES Node(id), - sourcePort char(10), - destPort char(10), - vlanId integer, - vlanPcp integer, - etherType integer, - macSource char(12), - macDest char(12), - ipSource varchar(64), - ipDest varchar(64), - ipTos integer, - ipProtocol integer, - ipSourcePort integer, - ipDestPort integer, - flags integer, - invFlags integer, - "action" varchar(4096) NOT NULL DEFAULT('accept') + ruleType integer NOT NULL DEFAULT(0), + "addr" blob(16), + "int1" integer, + "int2" integer, + "int3" integer, + "int4" integer ); -CREATE UNIQUE INDEX Rule_networkId_ruleNo ON Rule (networkId, ruleNo); +CREATE INDEX Rule_networkId_ruleNo ON Rule (networkId, ruleNo); +CREATE INDEX Rule_networkId_policyId ON Rule (networkId, policyId); |