ruby - what does this script do? -


i don't know ruby , need understand script does. know calls ebtables add rules configure networks virtual machines. i'm not sure how?

this code: 

#!/usr/bin/env ruby  require 'pp' require 'rexml/document'  vm_name=argv[0]  # uncomment act on listed bridges. #filtered_bridges = ['beth0']  def activate(rule)     system "sudo ebtables -a #{rule}" end  def get_bridges     bridges = hash.new     brctl_exit=`brctl show`     cur_bridge = ""     brctl_exit.split("\n")[1..-1].each |l|          l = l.split         if l.length > 1             cur_bridge = l[0]             bridges[cur_bridge] = array.new             bridges[cur_bridge] << l[3]         else             bridges[cur_bridge] << l[0]         end     end     bridges end  def get_interfaces     bridges = get_bridges     if defined? filtered_bridges         filtered_bridges.collect {|k,v| bridges[k]}.flatten     else         bridges.values.flatten     end end  nets=`virsh -c qemu:///system dumpxml #{vm_name}`  doc=rexml::document.new(nets).root  interfaces = get_interfaces()  doc.elements.each('/domain/devices/interface') {|net|     tap=net.elements['target'].attributes['dev']     if interfaces.include? tap         iface_mac=net.elements['mac'].attributes['address']          mac=iface_mac.split(':')         mac[-1]='00'         net_mac=mac.join(':')           in_rule="forward -s ! #{net_mac}/ff:ff:ff:ff:ff:00 -o #{tap} -j drop"         out_rule="forward -s ! #{iface_mac} -i #{tap} -j drop"          activate(in_rule)         activate(out_rule)     end }

so apparently extracts mac adresses (not sure ones) , drops packet/or forwards them somewhere?

thanks lot help!

the script runs virsh -c qemu:///system dumpxml #{vm_name} vm_name first parameter script.

it runs twice, mistake. first run

nets=`virsh -c qemu:///system dumpxml #{vm_name}`

then runs second time , places xml output in variable doc

doc=rexml::document.new(nets).root

it loops on interfaces, getting value attribute dev in element <target. if value in result brctl show command gets mac address address attribute in <mac> element.

the mac split array : , last element in array changed '00' , net_mac created array.

#{net_mac} in in_rule assignment replaced newly constructed net_mac. , on.

then in_rule , out_rule applied sudo ebtables -a #{rule} command.

clear?


Comments

Post a Comment

Popular posts from this blog

asp.net - repeatedly call AddImageUrl(url) to assemble pdf document -

i'm using abcpdf , i'm curious if can recursively call addimageurl() function assemble pdf document compile multiple urls? something like: int pagecount = 0; int theid = thedoc.addimageurl("http://stackoverflow.com/search?q=abcpdf+footer+page+x+out+of+", true, 0, true); //assemble document while (thedoc.chainable(theid)) { thedoc.page = thedoc.addpage(); theid = thedoc.addimagetochain(theid); } pagecount = thedoc.pagecount; console.writeline("1 document page count:" + pagecount); //flatten document (int = 1; <= pagecount; i++) { thedoc.pagenumber = i; thedoc.flatten(); } //now try again theid = thedoc.addimageurl("http://stackoverflow.com/questions/1980890/pdf-report-generation", true, 0, true); //assemble document while (thedoc.chainable(theid)) { thedoc.page = thedoc.addpage(); theid = thedoc.addimagetoc...
Read more

java - Android recognize cell phone with keyboard or not? -

in android app, want detect user's device if device has keyboard(like motorola milestone) , show corresponding user interface. guys know how that? ! regards justicepenny http://developer.android.com/reference/android/content/res/configuration.html public int keyboard the kind of keyboard attached device. 1 of: keyboard_nokeys, keyboard_qwerty, keyboard_12key. that's it!
Read more

iphone - How would you achieve a LED Scrolling effect? -

how achieve led scrolling effect example below? led sign - led ticker emulator iphone , ipad http://img.skitch.com/20101201-rsfh4p1bajb1wp94k466pdpiuj.preview.jpg sometimes remunerates comment in other posts :) have put code you, should implement font '8pin matrix' realistic feeling. uilabel *label; - (void)viewdidload { [super viewdidload]; label = [[uilabel alloc]initwithframe:cgrectmake(10, 50, 300, 20)]; label.font = [uifont fontwithname:@"courier-bold" size:16.0]; label.backgroundcolor = [uicolor blackcolor]; label.textcolor = [uicolor greencolor]; label.linebreakmode = uilinebreakmodecharacterwrap; // otherwise "…" label.text = @"this led text scrolled "; // blanks space between [self.view addsubview:label]; [nstimer scheduledtimerwithtimeinterval:0.12f target:self selector:@selector(scrolllabel) use...
Read more