summaryrefslogtreecommitdiff
path: root/interface-definitions/service-ids-ddos-protection.xml.in
diff options
context:
space:
mode:
authorAdrian Almenar <adrian@tecnocratica.net>2022-07-25 15:47:51 +0200
committerAdrian Almenar <adrian@tecnocratica.net>2022-07-25 15:47:51 +0200
commitbd119de6fd32480a4b6fd9c3b16cd5191af350af (patch)
tree6ff52e2be7a71bf8e9fca28498fa091c81c8e628 /interface-definitions/service-ids-ddos-protection.xml.in
parentdf7348da111668d38796d955bf64fa384eb7a58f (diff)
downloadvyos-1x-bd119de6fd32480a4b6fd9c3b16cd5191af350af.tar.gz
vyos-1x-bd119de6fd32480a4b6fd9c3b16cd5191af350af.zip
fastnetmon: T4556: Allow configure white_list_path and populate with hosts/networks that should be ignored.
Diffstat (limited to 'interface-definitions/service-ids-ddos-protection.xml.in')
-rw-r--r--interface-definitions/service-ids-ddos-protection.xml.in18
1 files changed, 18 insertions, 0 deletions
diff --git a/interface-definitions/service-ids-ddos-protection.xml.in b/interface-definitions/service-ids-ddos-protection.xml.in
index a176d6fff..86fc4dffa 100644
--- a/interface-definitions/service-ids-ddos-protection.xml.in
+++ b/interface-definitions/service-ids-ddos-protection.xml.in
@@ -43,6 +43,24 @@
<multi/>
</properties>
</leafNode>
+ <leafNode name="excluded-network">
+ <properties>
+ <help>Specify IPv4 and IPv6 networks which are going to be excluded from protection</help>
+ <valueHelp>
+ <format>ipv4net</format>
+ <description>IPv4 prefix(es) to exclude</description>
+ </valueHelp>
+ <valueHelp>
+ <format>ipv6net</format>
+ <description>IPv6 prefix(es) to exclude</description>
+ </valueHelp>
+ <constraint>
+ <validator name="ipv4-prefix"/>
+ <validator name="ipv6-prefix"/>
+ </constraint>
+ <multi/>
+ </properties>
+ </leafNode>
<leafNode name="listen-interface">
<properties>
<help>Listen interface for mirroring traffic</help>