Documentation
¶
Overview ¶
Package firewall provides a compliance plugin for firewall-specific security checks.
Package firewall provides a compliance plugin for firewall-specific security checks.
Package firewall provides a compliance plugin for firewall-specific security checks.
Package firewall provides a compliance plugin for firewall-specific security checks.
Package firewall provides a compliance plugin for firewall-specific security checks.
Package firewall provides a compliance plugin for firewall-specific security checks.
Package firewall provides a compliance plugin for firewall-specific security checks.
Package firewall provides a compliance plugin for firewall-specific security checks.
Index ¶
- type Plugin
- func (fp *Plugin) Description() string
- func (fp *Plugin) GetControlByID(id string) (*compliance.Control, error)
- func (fp *Plugin) GetControls() []compliance.Control
- func (fp *Plugin) Name() string
- func (fp *Plugin) RunChecks(device *common.CommonDevice) ([]compliance.Finding, []string, error)
- func (fp *Plugin) ValidateConfiguration() error
- func (fp *Plugin) Version() string
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Plugin ¶
type Plugin struct {
// contains filtered or unexported fields
}
Plugin implements the compliance.Plugin interface for Firewall plugin.
func (*Plugin) Description ¶
Description returns the plugin description.
func (*Plugin) GetControlByID ¶
func (fp *Plugin) GetControlByID(id string) (*compliance.Control, error)
GetControlByID returns a specific control by ID.
func (*Plugin) GetControls ¶
func (fp *Plugin) GetControls() []compliance.Control
GetControls returns all Firewall controls. The returned slice is a deep copy to prevent callers from mutating the plugin's internal state, including nested reference types (References, Tags, Metadata).
func (*Plugin) RunChecks ¶
func (fp *Plugin) RunChecks( device *common.CommonDevice, ) ([]compliance.Finding, []string, error)
RunChecks performs Firewall compliance checks against the device configuration in a single traversal. Returns (findings, evaluated, err).
Each helper returns (result, known). When known is false the check is skipped because the data needed to determine compliance is not available in config.xml, and that control ID is excluded from the evaluated slice. When known is true the control ID is appended to evaluated regardless of pass/fail.
err is currently always nil — reserved for unrecoverable future conditions.
func (*Plugin) ValidateConfiguration ¶
ValidateConfiguration validates the plugin configuration.
Source Files