AnyP::TrafficMode Class Reference

#include <TrafficMode.h>

Collaboration diagram for AnyP::TrafficMode:

Public Member Functions

 TrafficMode ()
 
 TrafficMode (const TrafficMode &rhs)
 
TrafficModeoperator= (const TrafficMode &rhs)
 
bool isIntercepted ()
 

Public Attributes

bool accelSurrogate
 
bool proxySurrogate
 
bool natIntercept
 
bool tproxyIntercept
 
bool tunnelSslBumping
 

Detailed Description

Set of 'mode' flags defining types of trafic which can be received.

Use to determine the processing steps which need to be applied to this traffic under any special circumstances which may apply.

Definition at line 21 of file TrafficMode.h.

Constructor & Destructor Documentation

AnyP::TrafficMode::TrafficMode ( )
inline

Definition at line 24 of file TrafficMode.h.

AnyP::TrafficMode::TrafficMode ( const TrafficMode rhs)
inline

Definition at line 25 of file TrafficMode.h.

References operator=().

Member Function Documentation

bool AnyP::TrafficMode::isIntercepted ( )
inline

true if the traffic is in any way intercepted

Definition at line 83 of file TrafficMode.h.

References natIntercept, and tproxyIntercept.

TrafficMode& AnyP::TrafficMode::operator= ( const TrafficMode rhs)
inline

Definition at line 26 of file TrafficMode.h.

Referenced by TrafficMode().

Member Data Documentation

bool AnyP::TrafficMode::accelSurrogate

marks HTTP accelerator (reverse/surrogate proxy) traffic

Indicating the following are required:

  • URL translation from relative to absolute form
  • restriction to origin peer relay recommended

Definition at line 34 of file TrafficMode.h.

bool AnyP::TrafficMode::natIntercept

marks NAT intercepted traffic

Indicating the following are required:

  • NAT lookups
  • URL translation from relative to absolute form
  • Same-Origin verification is mandatory
  • destination pinning is recommended
  • authentication prohibited

Definition at line 55 of file TrafficMode.h.

Referenced by isIntercepted().

bool AnyP::TrafficMode::proxySurrogate

marks ports receiving PROXY protocol traffic

Indicating the following are required:

  • PROXY protocol magic header
  • src/dst IP retrieved from magic PROXY header
  • indirect client IP trust verification is mandatory
  • TLS is not supported

Definition at line 44 of file TrafficMode.h.

bool AnyP::TrafficMode::tproxyIntercept

marks TPROXY intercepted traffic

Indicating the following are required:

  • src/dst IP inversion must be performed
  • client IP should be spoofed if possible
  • URL translation from relative to absolute form
  • Same-Origin verification is mandatory
  • destination pinning is recommended
  • authentication prohibited

Definition at line 67 of file TrafficMode.h.

Referenced by isIntercepted().

bool AnyP::TrafficMode::tunnelSslBumping

marks intercept and decryption of CONNECT (tunnel) SSL traffic

Indicating the following are required:

  • decryption of CONNECT request
  • URL translation from relative to absolute form
  • authentication prohibited on unwrapped requests (only on the CONNECT tunnel)
  • encrypted outbound server connections
  • peer relay prohibited. TODO: re-encrypt and re-wrap with CONNECT

Definition at line 78 of file TrafficMode.h.


The documentation for this class was generated from the following file:

 

Introduction

Documentation

Support

Miscellaneous

Web Site Translations

Mirrors