server/src/com/cloud/network/ExternalFirewallDeviceManager.java - cloudstack - Git at Google

 // Licensed to the Apache Software Foundation (ASF) under one
 // or more contributor license agreements.  See the NOTICE file
 // distributed with this work for additional information
 // regarding copyright ownership.  The ASF licenses this file
 // to you under the Apache License, Version 2.0 (the
 // "License"); you may not use this file except in compliance
 // with the License.  You may obtain a copy of the License at
 //
 //   http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing,
 // software distributed under the License is distributed on an
 // "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
 // KIND, either express or implied.  See the License for the
 // specific language governing permissions and limitations
 // under the License.
 package com.cloud.network;

 import java.util.List;

 import com.cloud.exception.InsufficientCapacityException;
 import com.cloud.exception.ResourceUnavailableException;
 import com.cloud.host.Host;
 import com.cloud.network.dao.ExternalFirewallDeviceVO;
 import com.cloud.network.rules.FirewallRule;
 import com.cloud.network.rules.PortForwardingRule;
 import com.cloud.resource.ServerResource;
 import com.cloud.utils.component.Manager;

 /* ExternalFirewallDeviceManager provides a abstract implementation for managing a external firewall in devices agnostic manner.
  * Device specific managers for external firewall (like SRX) should be implemented as pluggable service extending
  * ExternalFirewallDeviceManager implementation. An implementation of device specific manager can override default behaviour when needed.
  */

 public interface ExternalFirewallDeviceManager extends Manager {

     /**
      * adds a firewall device in to a physical network
      * @param physicalNetworkId physical network id of the network in to which device to be added
      * @param url url encoding device IP and device configuration parameter
      * @param username username
      * @param password password
      * @param deviceName device name
      * @param server resource that will handle the commands specific to this device
      * @return Host object for the device added
      */
     public ExternalFirewallDeviceVO addExternalFirewall(long physicalNetworkId, String url, String username, String password, String deviceName, ServerResource resource);

     /**
      * deletes load balancer device added in to a physical network
      * @param hostId
      * @return true if device successfully deleted
      */
     public boolean deleteExternalFirewall(Long hostId);

     /**
      * list external firewall devices of given device name type added in to a physical network
      * @param physicalNetworkId
      * @param deviceName
      * @return list of host objects for the external load balancers added in to the physical network
      */
     public List<Host> listExternalFirewalls(long physicalNetworkId, String deviceName);

     /**
      * finds a suitable firewall device which can be used by this network
      * @param network guest network
      * @param dedicatedLb true if a dedicated load balancer is needed for this guest network
      * @return ExternalLoadBalancerDeviceVO corresponding to the suitable device
      * @throws InsufficientCapacityException
      */
     public ExternalFirewallDeviceVO findSuitableFirewallForNetwork(Network network) throws InsufficientCapacityException;

     /**
      * returns the firewall device allocated for the guest network
      * @param network guest network id
      * @return ExternalFirewallDeviceVO object corresponding the firewall device assigned for this guest network
      */
     public ExternalFirewallDeviceVO getExternalFirewallForNetwork(Network network);

     /**
      * applies firewall rules
      * @param network guest network if
      * @param rules load balancer rules
      * @return true if successfully applied rules
      * @throws ResourceUnavailableException
      */
     public boolean applyFirewallRules(Network network, List<? extends FirewallRule> rules) throws ResourceUnavailableException;

     /**
      * implements or shutdowns guest network on the firewall device assigned to the guest network
      * @param add
      * @param guestConfig
      * @return
      * @throws ResourceUnavailableException
      * @throws InsufficientCapacityException
      */
     public boolean manageGuestNetworkWithExternalFirewall(boolean add, Network guestConfig) throws ResourceUnavailableException, InsufficientCapacityException;

     /**
      * applies port forwarding rules
      * @param network guest network if
      * @param rules load balancer rules
      * @return true if successfully applied rules
      * @throws ResourceUnavailableException
      */
     public boolean applyPortForwardingRules(Network network, List<? extends PortForwardingRule> rules) throws ResourceUnavailableException;
 }
	// Licensed to the Apache Software Foundation (ASF) under one
	// or more contributor license agreements. See the NOTICE file
	// distributed with this work for additional information
	// regarding copyright ownership. The ASF licenses this file
	// to you under the Apache License, Version 2.0 (the
	// "License"); you may not use this file except in compliance
	// with the License. You may obtain a copy of the License at
	//
	// http://www.apache.org/licenses/LICENSE-2.0
	//
	// Unless required by applicable law or agreed to in writing,
	// software distributed under the License is distributed on an
	// "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
	// KIND, either express or implied. See the License for the
	// specific language governing permissions and limitations
	// under the License.
	package com.cloud.network;

	import java.util.List;

	import com.cloud.exception.InsufficientCapacityException;
	import com.cloud.exception.ResourceUnavailableException;
	import com.cloud.host.Host;
	import com.cloud.network.dao.ExternalFirewallDeviceVO;
	import com.cloud.network.rules.FirewallRule;
	import com.cloud.network.rules.PortForwardingRule;
	import com.cloud.resource.ServerResource;
	import com.cloud.utils.component.Manager;

	/* ExternalFirewallDeviceManager provides a abstract implementation for managing a external firewall in devices agnostic manner.
	* Device specific managers for external firewall (like SRX) should be implemented as pluggable service extending
	* ExternalFirewallDeviceManager implementation. An implementation of device specific manager can override default behaviour when needed.
	*/

	public interface ExternalFirewallDeviceManager extends Manager {

	/**
	* adds a firewall device in to a physical network
	* @param physicalNetworkId physical network id of the network in to which device to be added
	* @param url url encoding device IP and device configuration parameter
	* @param username username
	* @param password password
	* @param deviceName device name
	* @param server resource that will handle the commands specific to this device
	* @return Host object for the device added
	*/
	public ExternalFirewallDeviceVO addExternalFirewall(long physicalNetworkId, String url, String username, String password, String deviceName, ServerResource resource);

	/**
	* deletes load balancer device added in to a physical network
	* @param hostId
	* @return true if device successfully deleted
	*/
	public boolean deleteExternalFirewall(Long hostId);

	/**
	* list external firewall devices of given device name type added in to a physical network
	* @param physicalNetworkId
	* @param deviceName
	* @return list of host objects for the external load balancers added in to the physical network
	*/
	public List<Host> listExternalFirewalls(long physicalNetworkId, String deviceName);

	/**
	* finds a suitable firewall device which can be used by this network
	* @param network guest network
	* @param dedicatedLb true if a dedicated load balancer is needed for this guest network
	* @return ExternalLoadBalancerDeviceVO corresponding to the suitable device
	* @throws InsufficientCapacityException
	*/
	public ExternalFirewallDeviceVO findSuitableFirewallForNetwork(Network network) throws InsufficientCapacityException;

	/**
	* returns the firewall device allocated for the guest network
	* @param network guest network id
	* @return ExternalFirewallDeviceVO object corresponding the firewall device assigned for this guest network
	*/
	public ExternalFirewallDeviceVO getExternalFirewallForNetwork(Network network);

	/**
	* applies firewall rules
	* @param network guest network if
	* @param rules load balancer rules
	* @return true if successfully applied rules
	* @throws ResourceUnavailableException
	*/
	public boolean applyFirewallRules(Network network, List<? extends FirewallRule> rules) throws ResourceUnavailableException;

	/**
	* implements or shutdowns guest network on the firewall device assigned to the guest network
	* @param add
	* @param guestConfig
	* @return
	* @throws ResourceUnavailableException
	* @throws InsufficientCapacityException
	*/
	public boolean manageGuestNetworkWithExternalFirewall(boolean add, Network guestConfig) throws ResourceUnavailableException, InsufficientCapacityException;

	/**
	* applies port forwarding rules
	* @param network guest network if
	* @param rules load balancer rules
	* @return true if successfully applied rules
	* @throws ResourceUnavailableException
	*/
	public boolean applyPortForwardingRules(Network network, List<? extends PortForwardingRule> rules) throws ResourceUnavailableException;
	}