JavaScript is disabled on your browser. Please enable JavaScript to enjoy all the features of this site.
Proxedo Network Security Suite
2 Reference Guide
5.11. Module Proxy
Hide Sidebar
Previous
|
Up
|
Next
Tweet
5.11.3. Functions
© 2021 BalaSys IT Security.
Send your comments to
support@balasys.hu
Contents
Search
Preface
1. Summary of contents
2. Terminology
3. Target audience and prerequisites
4. Products covered in this guide
5. Contact and support information
5.1. Sales contact
5.2. Support contact
5.3. Training
6. About this document
6.1. Feedback
1. How PNS works
1.1. PNS startup and initialization
1.2. Handling incoming connections
1.2.1. Handling packet filtering services
1.2.2. Handling application-level services
1.3. Proxy startup and the server-side connection
2. Configuring PNS proxies
2.1. Policies for requests and responses
2.1.1. Default actions
2.1.2. Response codes
2.2. Secondary sessions
2.3. Embedded protocol analysis
2.3.1. Proxy stacking
2.3.2. Program stacking
3. The PNS SSL framework
3.1. The SSL and TLS protocols
3.1.1. The SSL handshake
3.2. Handling TLS and SSL connections in Application-level Gateway
3.2.1. Behavior of the SSL framework
3.2.2. Session reuse in SSL and TLS connections
3.2.3. Understanding Encryption policies
3.2.4. Configuring Encryption policies
3.2.4.1. Enabling TLS-encryption in the connection
3.2.5. Certificate verification options
3.2.6. Protocol-level TLS settings
3.2.6.1. Cipher selection
3.2.7. Enabling STARTTLS
3.2.8. Configuring keybridging
3.3. Related standards
3.4. Encryption options reference
3.5. X.509 Certificates
3.5.1. X.509 Certificate Names
3.5.2. X.509 Certificate Revocation List
3.5.3. X.509 Online Certificate Status Protocol (OCSP) stapling
3.5.4. X.509 Certificate hash
3.5.5. X.509 CRL hash
4. Proxies
4.1. General information on the proxy modules
4.2. Attribute values
4.3. Examples
4.4. Module AnyPy
4.4.1. Related standards
4.4.2. Classes in the AnyPy module
4.4.3. Class AbstractAnyPyProxy
4.4.3.1. Attributes of AbstractAnyPyProxy
4.4.3.2. AbstractAnyPyProxy methods
Method __init__(self, session)
Arguments of __init__
Method proxyThread(self)
4.4.4. Class AnyPyProxy
4.4.4.1. Note
4.5. Module Ftp
4.5.1. The FTP protocol
4.5.1.1. Protocol elements
4.5.1.2. Data transfer
4.5.2. Proxy behavior
4.5.2.1. Configuring policies for FTP commands and responses
4.5.2.2. Configuring policies for FTP features and FTPS support
Enabling FTPS connections
4.5.2.3. Stacking
4.5.2.4. Configuring inband authentication
4.5.3. Related standards
4.5.4. Classes in the Ftp module
4.5.5. Class AbstractFtpProxy
4.5.5.1. Attributes of AbstractFtpProxy
4.5.6. Class FtpProxy
4.5.7. Class FtpProxyAnonRO
4.5.8. Class FtpProxyAnonRW
4.5.9. Class FtpProxyRO
4.5.10. Class FtpProxyRW
4.6. Module Http
4.6.1. The HTTP protocol
4.6.1.1. Protocol elements
4.6.1.2. Protocol versions
4.6.1.3. Bulk transfer
4.6.2. Proxy behavior
4.6.2.1. Transparent and non-transparent modes
4.6.2.2. Configuring policies for HTTP requests and responses
4.6.2.3. Configuring policies for HTTP headers
4.6.2.4. Redirecting URLs
4.6.2.5. Request types
4.6.2.6. Using parent proxies
4.6.2.7. FTP over HTTP
4.6.2.8. Error messages
4.6.2.9. Stacking
4.6.2.10. Webservers returning data in 205 responses
4.6.2.11. Session persistence in load balancing
4.6.2.12. URL filtering in HTTP
How URL filtering works
Configuring URL filtering in HTTP
.2.
List of URL-filtering categories
Customizing the URL database
4.6.3. Related standards
4.6.4. Classes in the Http module
4.6.5. Class AbstractHttpProxy
4.6.5.1. Attributes of AbstractHttpProxy
4.6.5.2. AbstractHttpProxy methods
Method getRequestHeader(self, header)
Arguments of getRequestHeader
Method getResponseHeader(self, header)
Arguments of getResponseHeader
Method setRequestHeader(self, header, new_value)
Arguments of setRequestHeader
Method setResponseHeader(self, header, new_value)
Arguments of setResponseHeader
4.6.6. Class HttpProxy
4.6.7. Class HttpProxyNonTransparent
4.6.8. Class HttpProxyURIFilter
4.6.8.1. Attributes of HttpProxyURIFilter
4.6.9. Class HttpProxyURIFilterNonTransparent
4.6.10. Class HttpProxyURLCategoryFilter
4.6.11. Class HttpWebdavProxy
4.6.12. Class NontransHttpWebdavProxy
4.7. Module Plug
4.7.1. Proxy behavior
4.7.2. Related standards
4.7.3. Classes in the Plug module
4.7.4. Class AbstractPlugProxy
4.7.4.1. Attributes of AbstractPlugProxy
4.7.4.2. AbstractPlugProxy methods
Method packetStats(self, client_bytes, client_pkts, server_bytes, server_pkts)
Arguments of packetStats
4.7.5. Class PlugProxy
4.8. Module Pop3
4.8.1. The POP3 protocol
4.8.1.1. Protocol elements
4.8.1.2. POP3 states
4.8.1.3. Bulk transfers
4.8.2. Proxy behavior
4.8.2.1. Default policy for commands
4.8.2.2. Configuring policies for POP3 commands
4.8.2.3. Rewriting the banner
4.8.2.4. Stacking
4.8.2.5. Rejecting viruses and spam
4.8.3. Related standards
4.8.4. Classes in the Pop3 module
4.8.5. Class AbstractPop3Proxy
4.8.5.1. Attributes of AbstractPop3Proxy
4.8.6. Class Pop3Proxy
4.8.7. Class Pop3STLSProxy
4.9. Module Smtp
4.9.1. The SMTP protocol
4.9.1.1. Protocol elements
4.9.1.2. Extensions
4.9.1.3. Bulk transfer
4.9.2. Proxy behavior
4.9.2.1. Default policy for commands
4.9.2.2. Configuring policies for SMTP commands and responses
4.9.2.3. Stacking
4.9.3. Related standards
4.9.4. Classes in the Smtp module
4.9.5. Class AbstractSmtpProxy
4.9.5.1. Attributes of AbstractSmtpProxy
4.9.6. Class SmtpProxy
4.9.6.1. Attributes of SmtpProxy
4.10. Module Telnet
4.10.1. The Telnet protocol
4.10.1.1. The network virtual terminal
4.10.1.2. Protocol elements
4.10.2. Proxy behavior
4.10.2.1. Default policy
4.10.2.2. Configuring policies for the TELNET protocol
Policy callback functions
Option negotiation
4.10.3. Related standards
4.10.4. Classes in the Telnet module
4.10.5. Class AbstractTelnetProxy
4.10.5.1. Attributes of AbstractTelnetProxy
4.10.6. Class TelnetProxy
4.10.7. Class TelnetProxyStrict
4.11. Module Imap
4.11.1. The IMAP protocol
4.11.1.1. Protocol elements
4.11.1.2. Protocol states
4.11.2. Proxy behavior
4.11.2.1. Configuring policies for IMAP requests and responses
4.11.2.2. Calling methods
Modifying the IMAP greeting string
IMAP states
4.11.2.3. Configuring acceptable flags
4.11.2.4. The IMAP command structure in policies
4.11.2.5. Stacking
4.11.3. Related standards
4.11.4. Classes in the Imap module
4.11.5. Class AbstractImapProxy
4.11.5.1. Attributes of AbstractImapProxy
4.11.6. Class ImapProxy
4.11.7. Class ImapProxyStrict
4.12. Module Ldap
4.12.1. The LDAP protocol
4.12.1.1. Protocol elements
4.12.2. Proxy behavior
4.12.3. Configuring policies for LDAP requests
4.12.4. Simple Authentication and Security Layer (SASL) on LDAP messages
4.12.5. Related standards
4.12.6. Classes in the Ldap module
4.12.7. Class AbstractLdapProxy
4.12.7.1. Attributes of AbstractLdapProxy
4.12.8. Class LdapProxy
4.12.9. Class LdapProxyRO
4.13. Module Mime
4.13.1. The MIME protocol
4.13.2. Proxy behavior
4.13.2.1. Configuring policies for MIME headers and content types
4.13.3. Related standards
4.13.4. Classes in the Mime module
4.13.5. Class AbstractMimeProxy
4.13.5.1. Attributes of AbstractMimeProxy
4.13.6. Class MimeProxy
4.14. Module Modbus
4.14.1. Classes in the Modbus module
4.14.2. Class AbstractModbusProxy
4.14.2.1. Attributes of AbstractModbusProxy
4.14.3. Class ModbusProxy
4.15. Module MSRpc
4.15.1. The RPC protocol
4.15.2. Proxy behavior
4.15.2.1. Setting policies for services
4.15.2.2. Restrictions
4.15.2.3. Global options
4.15.3. Classes in the MSRpc module
4.15.4. Class AbstractMSRpcProxy
4.15.4.1. Attributes of AbstractMSRpcProxy
4.15.5. Class MSRpcProxy
4.16. Module Radius
4.16.1. The RADIUS protocol
4.16.1.1. Protocol elements
4.16.1.2. RADIUS states
4.16.2. Proxy behavior
4.16.2.1. Configuring policies for RADIUS commands and responses
4.16.2.2. Binding secondary sessions
4.16.3. Related standards
4.16.4. Classes in the Radius module
4.16.5. Class AbstractRadiusProxy
4.16.5.1. Attributes of AbstractRadiusProxy
4.16.6. Class RadiusProxy
4.16.7. Class RadiusProxyStrict
4.17. Module Sip
4.17.1. The SIP protocol
4.17.1.1. Protocol elements
4.17.1.2. Proxy behavior
4.17.1.3. Keepalive messages in SIP
4.17.1.4. Configuring SIP policies
4.17.2. Related standards
4.17.3. Classes in the Sip module
4.17.4. Class AbstractSipProxy
4.17.4.1. Attributes of AbstractSipProxy
4.17.5. Class SipProxy
4.17.5.1. Attributes of SipProxy
4.18. Module Socks
4.18.1. The SOCKS protocol
4.18.2. Proxy behaviour
4.18.2.1. Authenticating clients
4.18.3. Related standards
4.18.4. Classes in the Socks module
4.18.5. Class AbstractSocksProxy
4.18.5.1. Attributes of AbstractSocksProxy
4.18.5.2. AbstractSocksProxy methods
Method requestForward(self, ip, port)
Arguments of requestForward
4.18.6. Class SocksProxy
4.19. Module SQLNet
4.19.1. The SQL*Net protocol
4.19.2. Proxy behavior
4.19.3. Related standards
4.19.4. Classes in the SQLNet module
4.19.5. Class AbstractSQLNetProxy
4.19.5.1. Attributes of AbstractSQLNetProxy
4.19.5.2. AbstractSQLNetProxy methods
Method connectRequest(self, connect_data)
Arguments of connectRequest
4.19.6. Class SQLNetProxy
4.19.6.1. Attributes of SQLNetProxy
4.20. Module Ssh
4.20.1. The Secure Shell protocol
4.20.1.1. Protocol elements
4.20.1.2. Protocol versions
4.20.2. Proxy behavior
4.20.2.1. Configuring policies for SSH channels
4.20.2.2. Configuring policies for SSH requests
4.20.2.3. Parameters of the SSH requests
4.20.2.4. Configuring local and remote forwarding
4.20.2.5. Configuring encryption parameters
4.20.2.6. Host key verification
4.20.2.7. Auditing SSH channels
4.20.2.8. Manipulating the keys of public-key authentication
4.20.3. Related standards
4.20.4. Classes in the Ssh module
4.20.5. Class AbstractSshProxy
4.20.5.1. Attributes of AbstractSshProxy
4.20.6. Class SshProxy
4.20.6.1. Attributes of SshProxy
4.20.6.2. SshProxy methods
Method checkUserKey(self, blob_type, blob)
Method mapUserKey(self, blob_type, blob)
4.20.7. Class SshProxySftpOnly
4.20.8. Class SshSFtpProxy
4.20.8.1. Attributes of SshSFtpProxy
4.20.9. Class SshScpProxy
4.21. Module TFtp
4.21.1. The TFtp protocol
4.21.1.1. Protocol elements
4.21.2. Proxy behavior
4.21.2.1. Configuring policies for TFTP commands
Rewriting the request
Responding with a custom error
4.21.3. Related standards
4.21.4. Classes in the TFtp module
4.21.5. Class AbstractTFtpProxy
4.21.5.1. Attributes of AbstractTFtpProxy
4.21.6. Class TFtpProxy
4.22. Module Vnc
4.22.1. Classes in the Vnc module
4.22.2. Class AbstractVncProxy
4.22.2.1. Attributes of AbstractVncProxy
4.22.3. Class VncProxy
5. Core
5.1. Module Auth
5.1.1. Authentication and authorization basics
5.1.2. Authentication and authorization in PNS
5.1.3. Classes in the Auth module
5.1.4. Class AbstractAuthentication
5.1.4.1. AbstractAuthentication methods
Method __init__(self)
5.1.5. Class AbstractAuthorization
5.1.6. Class AuthCache
5.1.6.1. AuthCache methods
Method __init__(self, timeout, update_stamp, service_equiv, cleanup_threshold)
Arguments of __init__
5.1.7. Class AuthenticationPolicy
5.1.7.1. AuthenticationPolicy methods
Method __init__(self, name, provider, authentication, cache)
Arguments of __init__
5.1.8. Class AuthorizationPolicy
5.1.8.1. AuthorizationPolicy methods
Method __init__(self, name, authorization)
Arguments of __init__
5.1.9. Class BasicAccessList
5.1.9.1. BasicAccessList methods
Method __init__(self, acl)
Arguments of __init__
5.1.10. Class InbandAuthentication
5.1.10.1. InbandAuthentication methods
Method __init__(self)
5.1.11. Class NEyesAuthorization
5.1.11.1. NEyesAuthorization methods
Method __init__(self, authorize_policy, wait_authorization, wait_timeout)
Arguments of __init__
5.1.12. Class PairAuthorization
5.1.12.1. PairAuthorization methods
Method __init__(self, wait_timeout)
Arguments of __init__
5.1.13. Class PermitGroup
5.1.13.1. PermitGroup methods
Method __init__(self, grouplist)
Arguments of __init__
5.1.14. Class PermitTime
5.1.14.1. PermitTime methods
Method __init__(self, intervals)
Arguments of __init__
5.1.15. Class PermitUser
5.1.15.1. PermitUser methods
Method __init__(self, userlist)
Arguments of __init__
5.1.16. Class ServerAuthentication
5.1.16.1. ServerAuthentication methods
Method __init__(self)
5.1.17. Class VAAuthentication
5.1.17.1. VAAuthentication methods
Method __init__(self, pki, port, timeout, connect_timeout)
Arguments of __init__
5.2. Module AuthDB
5.2.1. Classes in the AuthDB module
5.2.2. Class AbstractAuthenticationBackend
5.2.3. Class AuthenticationProvider
5.2.3.1. AuthenticationProvider methods
Method __init__(self, name, backend)
Arguments of __init__
5.2.4. Class VAS2AuthenticationBackend
5.2.4.1. VAS2AuthenticationBackend methods
Method __init__(self, serveraddr, use_ssl, pki_cert, pki_ca, ssl_verify_depth)
Arguments of __init__
5.3. Module Chainer
5.3.1. Selecting the network protocol
5.3.2. Classes in the Chainer module
5.3.3. Class AbstractChainer
5.3.4. Class ConnectChainer
5.3.4.1. ConnectChainer methods
Method __init__(self, protocol, timeout_connect)
Arguments of __init__
5.3.5. Class FailoverChainer
5.3.5.1. FailoverChainer methods
Method __init__(self, protocol, timeout_state, timeout_connect)
Arguments of __init__
5.3.6. Class MultiTargetChainer
5.3.6.1. MultiTargetChainer methods
Method __init__(self, protocol, timeout_connect)
Arguments of __init__
5.3.7. Class RoundRobinChainer
5.3.8. Class SideStackChainer
5.3.8.1. Attributes of SideStackChainer
5.3.8.2. SideStackChainer methods
Method __init__(self, right_class, right_chainer)
Arguments of __init__
5.3.9. Class StateBasedChainer
5.3.9.1. StateBasedChainer methods
Method __init__(self, protocol, timeout_connect, timeout_state)
Arguments of __init__
5.4. Module Detector
5.4.1. Classes in the Detector module
5.4.2. Class AbstractDetector
5.4.3. Class CertDetector
5.4.3.1. Attributes of CertDetector
5.4.3.2. CertDetector methods
Method __init__(self, certificate)
Arguments of __init__
5.4.4. Class DetectorPolicy
5.4.5. Class HttpDetector
5.4.5.1. Attributes of HttpDetector
5.4.5.2. HttpDetector methods
Method __init__(self, **kw)
5.4.6. Class SniDetector
5.4.6.1. Attributes of SniDetector
5.4.6.2. SniDetector methods
Method __init__(self, server_name_matcher)
Arguments of __init__
5.4.7. Class SshDetector
5.5. Module Encryption
5.5.1. TLS parameter constants
5.5.2. Classes in the Encryption module
5.5.3. Class AbstractVerifier
5.5.3.1. Attributes of AbstractVerifier
5.5.3.2. AbstractVerifier methods
Method __init__(self, trust_level, intermediate_revocation_check_type, leaf_revocation_check_type, trusted_certs_directory, required, verify_depth, verify_ca_directory, verify_crl_directory)
Arguments of __init__
5.5.4. Class Certificate
5.5.4.1. Attributes of Certificate
5.5.4.2. Certificate methods
Method __init__(self, certificate, private_key)
Arguments of __init__
Method fromFile(certificate_file_path, private_key)
Arguments of fromFile
5.5.5. Class CertificateCA
5.5.5.1. Attributes of CertificateCA
5.5.5.2. CertificateCA methods
Method __init__(self, certificate, private_key)
Arguments of __init__
5.5.6. Class ClientCertificateVerifier
5.5.6.1. Attributes of ClientCertificateVerifier
5.5.6.2. ClientCertificateVerifier methods
Method __init__(self, trust_level, intermediate_revocation_check_type, leaf_revocation_check_type, trusted_certs_directory, required, verify_depth, verify_ca_directory, verify_crl_directory, ca_hint_directory)
Arguments of __init__
5.5.7. Class ClientNoneVerifier
5.5.8. Class ClientOnlyEncryption
5.5.8.1. Attributes of ClientOnlyEncryption
5.5.8.2. ClientOnlyEncryption methods
Method __init__(self, client_certificate_generator, client_verify, client_tls_options)
Arguments of __init__
5.5.9. Class ClientOnlyStartTLSEncryption
5.5.9.1. Attributes of ClientOnlyStartTLSEncryption
5.5.9.2. ClientOnlyStartTLSEncryption methods
Method __init__(self, client_certificate_generator, client_verify, client_tls_options)
Arguments of __init__
5.5.10. Class ClientTLSOptions
5.5.10.1. Attributes of ClientTLSOptions
5.5.10.2. ClientTLSOptions methods
Method __init__(self, tls_min_version, tls_max_version, ciphers, ciphers_tlsv1_3, shared_groups, timeout, session_cache_size, disable_session_cache, disable_ticket, disable_compression, cipher_server_preference, prioritize_chacha, dh_params, disable_renegotiation, disable_send_root_ca)
Arguments of __init__
5.5.11. Class DHParam
5.5.11.1. Attributes of DHParam
5.5.11.2. DHParam methods
Method __init__(self, params)
Arguments of __init__
Method fromFile(file_path)
Arguments of fromFile
5.5.12. Class DynamicCertificate
5.5.12.1. DynamicCertificate methods
Method __init__(self, private_key, trusted_ca, untrusted_ca, cache_directory, extension_whitelist)
Arguments of __init__
5.5.13. Class DynamicServerEncryption
5.5.13.1. Attributes of DynamicServerEncryption
5.5.13.2. DynamicServerEncryption methods
Method __init__(self, client_security, client_certificate_generator, client_verify, client_tls_options)
Arguments of __init__
5.5.14. Class EncryptionPolicy
5.5.14.1. Attributes of EncryptionPolicy
5.5.14.2. EncryptionPolicy methods
Method __init__(self, name, encryption)
Arguments of __init__
5.5.15. Class FakeStartTLSEncryption
5.5.15.1. Attributes of FakeStartTLSEncryption
5.5.15.2. FakeStartTLSEncryption methods
Method __init__(self, client_certificate_generator, client_verify, server_verify, client_tls_options, server_tls_options)
Arguments of __init__
5.5.16. Class ForwardStartTLSEncryption
5.5.16.1. Attributes of ForwardStartTLSEncryption
5.5.16.2. ForwardStartTLSEncryption methods
Method __init__(self, client_certificate_generator, client_verify, server_verify, client_tls_options, server_tls_options)
Arguments of __init__
5.5.17. Class PrivateKey
5.5.17.1. Attributes of PrivateKey
5.5.17.2. PrivateKey methods
Method __init__(self, key, key_format, passphrase)
Arguments of __init__
Method fromFile(key_file_path, passphrase)
Arguments of fromFile
Method fromURI(key_uri, passphrase)
Arguments of fromURI
5.5.18. Class SNIBasedCertificate
5.5.18.1. Attributes of SNIBasedCertificate
5.5.18.2. SNIBasedCertificate methods
Method __init__(self, hostname_certificate_map, default)
Arguments of __init__
5.5.19. Class ServerCertificateVerifier
5.5.19.1. Attributes of ServerCertificateVerifier
5.5.19.2. ServerCertificateVerifier methods
Method __init__(self, trust_level, intermediate_revocation_check_type, leaf_revocation_check_type, trusted_certs_directory, verify_depth, verify_ca_directory, verify_crl_directory, check_subject)
Arguments of __init__
5.5.20. Class ServerNoneVerifier
5.5.21. Class ServerOnlyEncryption
5.5.21.1. Attributes of ServerOnlyEncryption
5.5.21.2. ServerOnlyEncryption methods
Method __init__(self, server_certificate_generator, server_verify, server_tls_options)
Arguments of __init__
5.5.22. Class ServerTLSOptions
5.5.22.1. Attributes of ServerTLSOptions
5.5.22.2. ServerTLSOptions methods
Method __init__(self, tls_min_version, tls_max_version, ciphers, ciphers_tlsv1_3, shared_groups, timeout, session_cache_size, disable_session_cache, disable_ticket, disable_compression)
Arguments of __init__
5.5.23. Class StaticCertificate
5.5.23.1. Attributes of StaticCertificate
5.5.23.2. StaticCertificate methods
Method __init__(self, certificates)
Arguments of __init__
5.5.24. Class TLSOptions
5.5.24.1. Attributes of TLSOptions
5.5.24.2. TLSOptions methods
Method __init__(self, tls_min_version, tls_max_version, ciphers, ciphers_tlsv1_3, shared_groups, timeout, session_cache_size, disable_session_cache, disable_ticket, disable_compression)
Arguments of __init__
5.5.25. Class TwoSidedEncryption
5.5.25.1. Attributes of TwoSidedEncryption
5.5.25.2. TwoSidedEncryption methods
Method __init__(self, client_certificate_generator, server_certificate_generator, client_verify, server_verify, client_tls_options, server_tls_options)
Arguments of __init__
5.6. Module Ids
5.6.1. Classes in the Ids module
5.6.2. Class Ids
5.6.2.1. Attributes of Ids
5.6.2.2. Ids methods
Method __init__(self, interface_name, mac_address)
Arguments of __init__
5.6.3. Class IdsPolicy
5.6.3.1. Attributes of IdsPolicy
5.6.3.2. IdsPolicy methods
Method __init__(self, name, ids)
Arguments of __init__
5.7. Module Keybridge
5.8. Module Matcher
5.8.1. Classes in the Matcher module
5.8.2. Class AbstractMatcher
5.8.3. Class CombineMatcher
5.8.4. Class DNSMatcher
5.8.4.1. DNSMatcher methods
Method __init__(self, hosts, server, resolve_on_init)
Arguments of __init__
5.8.5. Class MatcherPolicy
5.8.6. Class RegexpFileMatcher
5.8.6.1. Attributes of RegexpFileMatcher
5.8.6.2. RegexpFileMatcher methods
Method __init__(self, match_fname, ignore_fname)
Arguments of __init__
5.8.7. Class RegexpMatcher
5.8.7.1. Attributes of RegexpMatcher
5.8.7.2. RegexpMatcher methods
Method __init__(self, match_list, ignore_list, ignore_case)
Arguments of __init__
5.8.8. Class SmtpInvalidRecipientMatcher
5.8.8.1. SmtpInvalidRecipientMatcher methods
Method __init__(self, server_name, server_port, cache_timeout, force_delivery_attempt, sender_address, bind_name)
Arguments of __init__
5.8.9. Class WindowsUpdateMatcher
5.8.9.1. WindowsUpdateMatcher methods
Method __init__(self, server)
Arguments of __init__
5.9. Module NAT
5.9.1. Classes in the NAT module
5.9.2. Class AbstractNAT
5.9.2.1. AbstractNAT methods
Method __init__(self)
Method performTranslation(self, session, addrs, nat_type)
Arguments of performTranslation
5.9.3. Class FWMark
5.9.3.1. FWMark methods
Method __init__(self, gw_mark)
Arguments of __init__
5.9.4. Class GeneralNAT
5.9.4.1. GeneralNAT methods
Method __init__(self, mapping)
Arguments of __init__
5.9.5. Class HashNAT
5.9.5.1. HashNAT methods
Method __init__(self, ip_hash, default_reject)
Arguments of __init__
5.9.6. Class LinkAvailabilityPFNat
5.9.6.1. LinkAvailabilityPFNat methods
Method __init__(self, mapping)
Arguments of __init__
5.9.7. Class NAT46
5.9.7.1. NAT46 methods
Method __init__(self, prefix, prefix_mask, suffix)
Arguments of __init__
5.9.8. Class NAT64
5.9.8.1. NAT64 methods
Method __init__(self, prefix_mask)
Arguments of __init__
5.9.9. Class NATPolicy
5.9.9.1. NATPolicy methods
Method __init__(self, name, nat, cacheable)
Arguments of __init__
5.9.10. Class RandomNAT
5.9.10.1. RandomNAT methods
Method __init__(self, addresses)
Arguments of __init__
5.9.11. Class StaticNAT
5.9.11.1. StaticNAT methods
Method __init__(self, addr)
Arguments of __init__
5.10. Module Notification
5.10.1. Classes in the Notification module
5.10.2. Class AbstractNotificationMethod
5.10.3. Class EmailNotificationMethod
5.10.3.1. Attributes of EmailNotificationMethod
5.10.3.2. EmailNotificationMethod methods
Method __init__(self, recipient)
Arguments of __init__
5.10.4. Class NotificationPolicy
5.11. Module Proxy
5.11.1. Functions in module Proxy
5.11.2. Classes in the Proxy module
5.11.3. Functions
5.11.3.1. Function proxyLog(self, type, level, msg, args)
Arguments of proxyLog
5.11.4. Class Proxy
5.11.4.1. Attributes of Proxy
5.11.4.2. Proxy methods
Method closedByAbort(self)
Method config(self)
Method connectServer(self)
Method getCredentials(self, method, username, domain, target, port)
Arguments of getCredentials
Method invalidPolicyCall(self)
Method setServerAddress(self, host, port)
Arguments of setServerAddress
Method setServerSideEncryption(self)
Method userAuthenticated(self, entity, groups, auth_info)
Arguments of userAuthenticated
5.12. Module Resolver
5.12.1. Classes in the Resolver module
5.12.2. Class AbstractResolver
5.12.3. Class DNSResolver
5.12.3.1. DNSResolver methods
Method __init__(self, name_server, timeout, use_search_domain)
Arguments of __init__
5.12.4. Class HashResolver
5.12.4.1. HashResolver methods
Method __init__(self, mapping)
Arguments of __init__
5.13. Module Router
5.13.1. The source address used in the server-side connection
5.13.2. Classes in the Router module
5.13.3. Class AbstractRouter
5.13.3.1. Attributes of AbstractRouter
5.13.4. Class DirectedRouter
5.13.4.1. Attributes of DirectedRouter
5.13.4.2. DirectedRouter methods
Method __init__(self, dest_addr, forge_addr, overrideable, forge_port)
Arguments of __init__
5.13.5. Class InbandRouter
5.13.5.1. InbandRouter methods
Method __init__(self, forge_addr, forge_port)
Arguments of __init__
5.13.6. Class TransparentRouter
5.13.6.1. Attributes of TransparentRouter
5.13.6.2. TransparentRouter methods
Method __init__(self, forced_port, forge_addr, overrideable, forge_port)
Arguments of __init__
5.14. Module Rule
5.14.1. Evaluating firewall rules
5.14.2. Sample rules
5.14.3. Adding metadata to rules: tags and description
5.14.4. Classes in the Rule module
5.14.5. Class PortRange
5.14.5.1. Attributes of PortRange
5.14.6. Class Rule
5.14.6.1. Rule methods
Method __init__(self, **kw)
Arguments of __init__
5.15. Module Service
5.15.1. Naming services
5.15.2. Classes in the Service module
5.15.3. Class AbstractService
5.15.3.1. Attributes of AbstractService
5.15.3.2. AbstractService methods
Method __init__(self, name)
Arguments of __init__
5.15.4. Class DenyService
5.15.4.1. Attributes of DenyService
5.15.4.2. DenyService methods
Method __init__(self, name, logging, ipv4_setting, ipv6_setting, log_verbose, log_spec, limit_policy)
Arguments of __init__
5.15.5. Class PFService
5.15.5.1. Attributes of PFService
5.15.5.2. PFService methods
Method __init__(self, name, router, snat_policy, dnat_policy, log_verbose, log_spec, limit_policy, geoip_policy)
Arguments of __init__
5.15.6. Class Service
5.15.6.1. Attributes of Service
5.15.6.2. Service methods
Method __init__(self, name, proxy_class, router, chainer, snat_policy, dnat_policy, authentication_policy, authorization_policy, max_instances, max_sessions, auth_name, resolver_policy, keepalive, encryption_policy, limit_target_zones_to, detector_config, detector_default_service_name, session_counting, limit_policy, geoip_policy)
Arguments of __init__
Method startInstance(self, session)
Arguments of startInstance
5.16. Module Session
5.16.1. Classes in the Session module
5.16.2. Class StackedSession
5.16.2.1. Attributes of StackedSession
5.16.2.2. StackedSession methods
Method setTargetAddress(self, addr)
Arguments of setTargetAddress
5.17. Module SockAddr
5.17.1. Classes in the SockAddr module
5.17.2. Class SockAddrInet
5.17.2.1. Attributes of SockAddrInet
5.17.3. Class SockAddrInet6
5.17.3.1. Attributes of SockAddrInet6
5.17.4. Class SockAddrInetHostname
5.17.4.1. Attributes of SockAddrInetHostname
5.17.5. Class SockAddrInetRange
5.17.5.1. Attributes of SockAddrInetRange
5.17.6. Class SockAddrUnix
5.17.6.1. Attributes of SockAddrUnix
5.18. Module Stack
5.18.1. Classes in the Stack module
5.18.2. Class AbstractStackingBackend
5.18.3. Class RemoteStackingBackend
5.18.3.1. RemoteStackingBackend methods
Method __init__(self, addrs)
Arguments of __init__
5.18.4. Class StackingProvider
5.18.4.1. StackingProvider methods
Method __init__(self, name, backend)
Arguments of __init__
5.19. Module Zone
5.19.1. Classes in the Zone module
5.19.2. Class Zone
5.19.2.1. Zone methods
Method __init__(self, name, addrs, hostnames, admin_parent)
Arguments of __init__
5.20. Module Vela
6. Core-internal
6.1. Module Cache
6.2. Module Core
6.3. Module Dispatch
6.3.1. Zone-based service selection
6.3.2. Classes in the Dispatch module
6.3.3. Class CSZoneDispatcher
6.3.3.1. Attributes of CSZoneDispatcher
6.3.3.2. CSZoneDispatcher methods
Method __init__(self, bindto, services, **kw)
Arguments of __init__
6.3.4. Class Dispatcher
6.3.4.1. Attributes of Dispatcher
6.3.4.2. Dispatcher methods
Method __init__(self, bindto, service, **kw)
Arguments of __init__
6.4. Module Globals
6.5. Module Stream
6.5.1. Classes in the Stream module
6.5.2. Class Stream
6.5.2.1. Attributes of Stream
6.5.2.2. Stream methods
Method __init__(self, fd, name)
Arguments of __init__
Appendix A. Additional proxy information
A.1. TELNET appendix
A.2. RADIUS appendix
A.3. SQL*Net appendix
Appendix B. Global options of PNS
B.1. Setting global options of PNS
blob
audit
options
Appendix C. PNS manual pages
vas
vas.cfg
vcf
vcf.cfg
vms
vms.conf
vms-integrity
instances.conf
policy.py
vela
velactl
velactl.conf
vela-zone-helper
vela-zone-helper.conf
vela-geoip-helper
vela-geoip-helper.conf
vavupdate
vavupdate.options
vqc
Appendix D. Proxedo Network Security Suite End-User License Agreement
D.1. 1. SUBJECT OF THE LICENSE CONTRACT
D.2. 2. DEFINITIONS
D.3. 3. LICENSE GRANTS AND RESTRICTIONS
D.4. 4. SUBSIDIARIES
D.5. 5. INTELLECTUAL PROPERTY RIGHTS
D.6. 6. TRADE MARKS
D.7. 7. NEGLIGENT INFRINGEMENT
D.8. 8. INTELLECTUAL PROPERTY INDEMNIFICATION
D.9. 9. LICENSE FEE
D.10. 10. WARRANTIES
D.11. 11. DISCLAIMER OF WARRANTIES
D.12. 12. LIMITATION OF LIABILITY
D.13. 13.DURATION AND TERMINATION
D.14. 14. AMENDMENTS
D.15. 15. WAIVER
D.16. 16. SEVERABILITY
D.17. 17. NOTICES
D.18. 18. MISCELLANEOUS
Appendix E. Creative Commons Attribution Non-commercial No Derivatives (by-nc-nd) License
Index of Proxy attributes
Index of Core attributes
Index of all attributes
Search Highlighter (On/Off)