git.openwrt.org Git - feed/packages.git/commit

author	Oskari Rauta <oskari.rauta@gmail.com>
	Fri, 17 Feb 2023 07:25:08 +0000 (07:25 +0000)
committer	Tianling Shen <cnsztl@gmail.com>
	Thu, 9 Mar 2023 10:13:16 +0000 (18:13 +0800)
commit	278a6617a003aed8f1a85f408fc71faada3fd316
tree	12d5fd4d471f15a58669fdff40b04dbeb7573556	tree \| snapshot
parent	3c08be8fd7d88ffd59a4971762b6dc88aa295d50	commit \| diff

cni-protocol: new package

simple protocol support script for netifd.

netifd protocol support for cni networks makes
defining network for podman and other similar
systems using cni networking much easier and simpler.

with cni protocol support, on a cni network, where firewall
and portmapper is disabled, you may control firewalling
with openwrt's standard firewall configuration.

for example, create a container that hosts web content on
port 80 with static ip on your cni network, if your
network is 10.88.0.0/16, use for eg. 10.88.0.101 as
your containers static ip address. Create a zone, cni
to your firewall and add your interface to it.

Now you can easily set up redirectiong to 10.88.0.101:80
to expose it's port 80 to wan for serving your website.

Protocol has only one setting: device, on podman this
often is cni-podman0. This protocol may also be used
on other equillavents, such as netavark (cni replacement
in podman), where device as default is podman0.

Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>

net/cni-protocol/Makefile	[new file with mode: 0644]	blob
net/cni-protocol/files/cni.sh	[new file with mode: 0755]	blob