Merge branch 'dev' into bugfix/2442-add_SubprocVecEnv_support

.gitignore

@@ -82,6 +82,7 @@ target/
 
 # Jupyter Notebook
 .ipynb_checkpoints
+PPO_UC2/
 
 # IPython
 profile_default/
@@ -150,6 +151,7 @@ docs/source/primaite-dependencies.rst
 # outputs
 src/primaite/outputs/
 simulation_output/
+sessions/
 
 # benchmark session outputs
 benchmark/output

CHANGELOG.md

@@ -14,14 +14,20 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 - Added ability to define scenarios that change depending on the episode number.
 - Standardised Environment API by renaming the config parameter of `PrimaiteGymEnv` from `game_config` to `env_config`
 - Database Connection ID's are now created/issued by DatabaseService and not DatabaseClient
-- added ability to set PrimAITE between development and production modes via PrimAITE CLI ``mode`` command
 - Updated DatabaseClient so that it can now have a single native DatabaseClientConnection along with a collection of DatabaseClientConnection's.
 - Implemented the uninstall functionality for DatabaseClient so that all connections are terminated at the DatabaseService.
 - Added the ability for a DatabaseService to terminate a connection.
 - Added active_connection to DatabaseClientConnection so that if the connection is terminated active_connection is set to False and the object can no longer be used.
 - Added additional show functions to enable connection inspection.
+- Updates to agent logging, to include the reward both per step and per episode.
+- Introduced Developer CLI tools to assist with developing/debugging PrimAITE
+  - Can be enabled via `primaite dev-mode enable`
+  - Activating dev-mode will change the location where the sessions will be output - by default will output where the PrimAITE repository is located
+- Refactored all air-space usage to that a new instance of AirSpace is created for each instance of Network. This 1:1 relationship between network and airspace will allow parallelization.
 - Added notebook to demonstrate use of SubprocVecEnv from SB3 to vectorise environments to speed up training.
 
+
+
 ## [Unreleased]
 - Made requests fail to reach their target if the node is off
 - Added responses to requests

docs/index.rst

@@ -116,6 +116,7 @@ Head over to the :ref:`getting-started` page to install and setup PrimAITE!
    :caption: Developer information:
    :hidden:
 
+   source/developer_tools
    source/state_system
    source/request_system
    PrimAITE API <source/_autosummary/primaite>

docs/source/configuration/simulation.rst

@@ -31,7 +31,13 @@ To see the configuration for these nodes, refer to the following:
     :maxdepth: 1
     :glob:
 
-    simulation/nodes/*
+    simulation/nodes/computer
+    simulation/nodes/firewall
+    simulation/nodes/router
+    simulation/nodes/server
+    simulation/nodes/switch
+    simulation/nodes/wireless_router
+    simulation/nodes/network_examples
 
 ``links``
 ---------
@@ -54,15 +60,13 @@ this results in:
 .. code-block:: yaml
 
     links:
-        - ref: computer_1___switch
-        endpoint_a_ref: computer_1
+        - endpoint_a_hostname: computer_1
         endpoint_a_port: 1 # port 1 on computer_1
-        endpoint_b_ref: switch
+        endpoint_b_hostname: switch
         endpoint_b_port: 1 # port 1 on switch
-        - ref: computer_2___switch
-        endpoint_a_ref: computer_2
+        - endpoint_a_hostname: computer_2
         endpoint_a_port: 1 # port 1 on computer_2
-        endpoint_b_ref: switch
+        endpoint_b_hostname: switch
         endpoint_b_port: 2 # port 2 on switch
 
 ``ref``
@@ -70,7 +74,7 @@ this results in:
 
 The human readable name for the link. Not used in code, however is useful for a human to understand what the link is for.
 
-``endpoint_a_ref``
+``endpoint_a_hostname``
 ^^^^^^^^^^^^^^^^^^
 
 The ``hostname`` of the node which must be connected.
@@ -78,10 +82,10 @@ The ``hostname`` of the node which must be connected.
 ``endpoint_a_port``
 ^^^^^^^^^^^^^^^^^^^
 
-The port on ``endpoint_a_ref`` which is to be connected to ``endpoint_b_port``.
+The port on ``endpoint_a_hostname`` which is to be connected to ``endpoint_b_port``.
 This accepts an integer value e.g. if port 1 is to be connected, the configuration should be ``endpoint_a_port: 1``
 
-``endpoint_b_ref``
+``endpoint_b_hostname``
 ^^^^^^^^^^^^^^^^^^
 
 The ``hostname`` of the node which must be connected.
@@ -89,5 +93,5 @@ The ``hostname`` of the node which must be connected.
 ``endpoint_b_port``
 ^^^^^^^^^^^^^^^^^^^
 
-The port on ``endpoint_b_ref`` which is to be connected to ``endpoint_a_port``.
+The port on ``endpoint_b_hostname`` which is to be connected to ``endpoint_a_port``.
 This accepts an integer value e.g. if port 1 is to be connected, the configuration should be ``endpoint_b_port: 1``

docs/source/developer_tools.rst

@@ -0,0 +1,210 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+.. _Developer Tools:
+
+Developer Tools
+***************
+
+PrimAITE includes developer CLI tools that are intended to be used by developers.
+
+dev-mode
+========
+
+The dev-mode contains configuration which override any of the config files during runtime.
+
+This is intended to make debugging easier by removing the need to find the relevant configuration file/settings.
+
+Enabling dev-mode
+-----------------
+
+The PrimAITE dev-mode can be enabled via the use of
+
+.. code-block::
+
+    primaite dev-mode enable
+
+Disabling dev-mode
+------------------
+
+The PrimAITE dev-mode can be disabled via the use of
+
+.. code-block::
+
+    primaite dev-mode disable
+
+Show current mode
+-----------------
+
+To show if the dev-mode is enabled or not, use
+The PrimAITE dev-mode can be disabled via the use of
+
+.. code-block::
+
+    primaite dev-mode show
+
+dev-mode configuration
+======================
+
+The following configures some specific items that the dev-mode overrides, if enabled.
+
+`--sys-log-level` or `-level`
+----------------------------
+
+The level of system logs can be overridden by dev-mode.
+
+By default, this is set to DEBUG
+
+The available options are [DEBUG|INFO|WARNING|ERROR|CRITICAL]
+
+.. code-block::
+
+    primaite dev-mode config -level INFO
+
+or
+
+.. code-block::
+
+    primaite dev-mode config --sys-log-level INFO
+
+`--output-sys-logs` or `-sys`
+-----------------------------
+
+The outputting of system logs can be overridden by dev-mode.
+
+By default, this is set to False
+
+Enabling system logs
+""""""""""""""""""""
+
+To enable outputting of system logs
+
+.. code-block::
+
+    primaite dev-mode config --output-sys-logs
+
+or
+
+.. code-block::
+
+    primaite dev-mode config -sys
+
+Disabling system logs
+"""""""""""""""""""""
+
+To disable outputting of system logs
+
+.. code-block::
+
+    primaite dev-mode config --no-sys-logs
+
+or
+
+.. code-block::
+
+    primaite dev-mode config -nsys
+
+`--output-pcap-logs` or `-pcap`
+-------------------------------
+
+The outputting of packet capture logs can be overridden by dev-mode.
+
+By default, this is set to False
+
+Enabling PCAP logs
+""""""""""""""""""
+
+To enable outputting of packet capture logs
+
+.. code-block::
+
+    primaite dev-mode config --output-pcap-logs
+
+or
+
+.. code-block::
+
+    primaite dev-mode config -pcap
+
+Disabling PCAP logs
+"""""""""""""""""""
+
+To disable outputting of packet capture logs
+
+.. code-block::
+
+    primaite dev-mode config --no-pcap-logs
+
+or
+
+.. code-block::
+
+    primaite dev-mode config -npcap
+
+`--output-to-terminal` or `-t`
+------------------------------
+
+The outputting of system logs to the terminal can be overridden by dev-mode.
+
+By default, this is set to False
+
+Enabling system log output to terminal
+""""""""""""""""""""""""""""""""""""""
+
+To enable outputting of system logs to terminal
+
+.. code-block::
+
+    primaite dev-mode config --output-to-terminal
+
+or
+
+.. code-block::
+
+    primaite dev-mode config -t
+
+Disabling system log output to terminal
+"""""""""""""""""""""""""""""""""""""""
+
+To disable outputting of system logs to terminal
+
+.. code-block::
+
+    primaite dev-mode config --no-terminal
+
+or
+
+.. code-block::
+
+    primaite dev-mode config -nt
+
+path
+----
+
+PrimAITE dev-mode can override where sessions are output.
+
+By default, PrimAITE will output the sessions in USER_HOME/primaite/sessions
+
+With dev-mode enabled, by default, this will be changed to PRIMAITE_REPOSITORY_ROOT/sessions
+
+However, providing a path will let dev-mode output sessions to the given path e.g.
+
+.. code-block:: bash
+    :caption: Unix
+
+    primaite dev-mode config path ~/output/path
+
+.. code-block:: powershell
+    :caption: Windows (Powershell)
+
+    primaite dev-mode config path ~\output\path
+
+default path
+""""""""""""
+
+To reset the path to use the PRIMAITE_REPOSITORY_ROOT/sessions, run the command
+
+.. code-block::
+
+    primaite dev-mode config path --default

docs/source/getting_started.rst

@@ -161,9 +161,11 @@ To set PrimAITE to run in development mode:
 .. code-block:: bash
     :caption: Unix
 
-    primaite mode --dev
+    primaite dev-mode enable
 
 .. code-block:: powershell
     :caption: Windows (Powershell)
 
-    primaite mode --dev
+    primaite dev-mode enable
+
+More information about :ref:`Developer Tools`

src/primaite/__init__.py

@@ -122,35 +122,20 @@ class _PrimaitePaths:
 PRIMAITE_PATHS: Final[_PrimaitePaths] = _PrimaitePaths()
 
 
-def _host_primaite_config() -> None:
-    if not PRIMAITE_PATHS.app_config_file_path.exists():
-        pkg_config_path = Path(pkg_resources.resource_filename("primaite", "setup/_package_data/primaite_config.yaml"))
-        shutil.copy2(pkg_config_path, PRIMAITE_PATHS.app_config_file_path)
-
-
-_host_primaite_config()
-
-
 def _get_primaite_config() -> Dict:
     config_path = PRIMAITE_PATHS.app_config_file_path
     if not config_path.exists():
+        # load from package if config does not exist
         config_path = Path(pkg_resources.resource_filename("primaite", "setup/_package_data/primaite_config.yaml"))
+        # generate app config
+        shutil.copy2(config_path, PRIMAITE_PATHS.app_config_file_path)
     with open(config_path, "r") as file:
+        # load from config
         primaite_config = yaml.safe_load(file)
-    log_level_map = {
-        "NOTSET": logging.NOTSET,
-        "DEBUG": logging.DEBUG,
-        "INFO": logging.INFO,
-        "WARN": logging.WARN,
-        "WARNING": logging.WARN,
-        "ERROR": logging.ERROR,
-        "CRITICAL": logging.CRITICAL,
-    }
-    primaite_config["log_level"] = log_level_map[primaite_config["logging"]["log_level"]]
-    return primaite_config
+        return primaite_config
 
 
-_PRIMAITE_CONFIG = _get_primaite_config()
+PRIMAITE_CONFIG = _get_primaite_config()
 
 
 class _LevelFormatter(Formatter):
@@ -177,11 +162,11 @@ class _LevelFormatter(Formatter):
 
 _LEVEL_FORMATTER: Final[_LevelFormatter] = _LevelFormatter(
     {
-        logging.DEBUG: _PRIMAITE_CONFIG["logging"]["logger_format"]["DEBUG"],
-        logging.INFO: _PRIMAITE_CONFIG["logging"]["logger_format"]["INFO"],
-        logging.WARNING: _PRIMAITE_CONFIG["logging"]["logger_format"]["WARNING"],
-        logging.ERROR: _PRIMAITE_CONFIG["logging"]["logger_format"]["ERROR"],
-        logging.CRITICAL: _PRIMAITE_CONFIG["logging"]["logger_format"]["CRITICAL"],
+        logging.DEBUG: PRIMAITE_CONFIG["logging"]["logger_format"]["DEBUG"],
+        logging.INFO: PRIMAITE_CONFIG["logging"]["logger_format"]["INFO"],
+        logging.WARNING: PRIMAITE_CONFIG["logging"]["logger_format"]["WARNING"],
+        logging.ERROR: PRIMAITE_CONFIG["logging"]["logger_format"]["ERROR"],
+        logging.CRITICAL: PRIMAITE_CONFIG["logging"]["logger_format"]["CRITICAL"],
     }
 )
 
@@ -193,10 +178,10 @@ _FILE_HANDLER: Final[RotatingFileHandler] = RotatingFileHandler(
     backupCount=9,  # Max 100MB of logs
     encoding="utf8",
 )
-_STREAM_HANDLER.setLevel(_PRIMAITE_CONFIG["logging"]["log_level"])
-_FILE_HANDLER.setLevel(_PRIMAITE_CONFIG["logging"]["log_level"])
+_STREAM_HANDLER.setLevel(PRIMAITE_CONFIG["logging"]["log_level"])
+_FILE_HANDLER.setLevel(PRIMAITE_CONFIG["logging"]["log_level"])
 
-_LOG_FORMAT_STR: Final[str] = _PRIMAITE_CONFIG["logging"]["logger_format"]
+_LOG_FORMAT_STR: Final[str] = PRIMAITE_CONFIG["logging"]["logger_format"]
 _STREAM_HANDLER.setFormatter(_LEVEL_FORMATTER)
 _FILE_HANDLER.setFormatter(_LEVEL_FORMATTER)
 
@@ -215,6 +200,6 @@ def getLogger(name: str) -> Logger:  # noqa
         logging config.
     """
     logger = logging.getLogger(name)
-    logger.setLevel(_PRIMAITE_CONFIG["log_level"])
+    logger.setLevel(PRIMAITE_CONFIG["logging"]["log_level"])
 
     return logger

src/primaite/cli.py

@@ -2,16 +2,21 @@
 """Provides a CLI using Typer as an entry point."""
 import logging
 import os
+import shutil
 from enum import Enum
+from pathlib import Path
 from typing import Optional
 
+import pkg_resources
 import typer
 import yaml
 from typing_extensions import Annotated
 
 from primaite import PRIMAITE_PATHS
+from primaite.utils.cli import dev_cli
 
 app = typer.Typer(no_args_is_help=True)
+app.add_typer(dev_cli.dev, name="dev-mode")
 
 
 @app.command()
@@ -89,7 +94,7 @@ def version() -> None:
 
 
 @app.command()
-def setup(overwrite_existing: bool = True) -> None:
+def setup(overwrite_existing: bool = False) -> None:
     """
     Perform the PrimAITE first-time setup.
 
@@ -102,11 +107,14 @@ def setup(overwrite_existing: bool = True) -> None:
 
     _LOGGER.info("Performing the PrimAITE first-time setup...")
 
-    _LOGGER.info("Building primaite_config.yaml...")
-
     _LOGGER.info("Building the PrimAITE app directories...")
     PRIMAITE_PATHS.mkdirs()
 
+    _LOGGER.info("Building primaite_config.yaml...")
+    if overwrite_existing:
+        pkg_config_path = Path(pkg_resources.resource_filename("primaite", "setup/_package_data/primaite_config.yaml"))
+        shutil.copy(pkg_config_path, PRIMAITE_PATHS.app_config_file_path)
+
     _LOGGER.info("Rebuilding the demo notebooks...")
     reset_demo_notebooks.run(overwrite_existing=True)
 
@@ -114,47 +122,3 @@ def setup(overwrite_existing: bool = True) -> None:
     reset_example_configs.run(overwrite_existing=True)
 
     _LOGGER.info("PrimAITE setup complete!")
-
-
-@app.command()
-def mode(
-    dev: Annotated[bool, typer.Option("--dev", help="Activates PrimAITE developer mode")] = None,
-    prod: Annotated[bool, typer.Option("--prod", help="Activates PrimAITE production mode")] = None,
-) -> None:
-    """
-    Switch PrimAITE between developer mode and production mode.
-
-    By default, PrimAITE will be in production mode.
-
-    To view the current mode, use: primaite mode
-
-    To set to development mode, use: primaite mode --dev
-
-    To return to production mode, use: primaite mode --prod
-    """
-    if PRIMAITE_PATHS.app_config_file_path.exists():
-        with open(PRIMAITE_PATHS.app_config_file_path, "r") as file:
-            primaite_config = yaml.safe_load(file)
-            if dev and prod:
-                print("Unable to activate developer and production modes concurrently.")
-                return
-
-            if (dev is None) and (prod is None):
-                is_dev_mode = primaite_config["developer_mode"]
-
-                if is_dev_mode:
-                    print("PrimAITE is running in developer mode.")
-                else:
-                    print("PrimAITE is running in production mode.")
-            if dev:
-                # activate dev mode
-                primaite_config["developer_mode"] = True
-                with open(PRIMAITE_PATHS.app_config_file_path, "w") as file:
-                    yaml.dump(primaite_config, file)
-                print("PrimAITE is running in developer mode.")
-            if prod:
-                # activate prod mode
-                primaite_config["developer_mode"] = False
-                with open(PRIMAITE_PATHS.app_config_file_path, "w") as file:
-                    yaml.dump(primaite_config, file)
-                print("PrimAITE is running in production mode.")

src/primaite/config/_package_data/basic_lan_network_example.yaml

@@ -0,0 +1,65 @@
+game:
+  ports:
+  - ARP
+  protocols:
+  - ICMP
+  - TCP
+  - UDP
+
+simulation:
+  network:
+    nodes:
+      - hostname: pc_1
+        type: computer
+        ip_address: 192.168.1.11
+        subnet_mask: 255.255.255.0
+        default_gateway: 192.168.1.1
+
+      - hostname: pc_2
+        type: computer
+        ip_address: 192.168.1.12
+        subnet_mask: 255.255.255.0
+        default_gateway: 192.168.1.1
+
+      - hostname: server_1
+        type: server
+        ip_address: 192.168.1.13
+        subnet_mask: 255.255.255.0
+        default_gateway: 192.168.1.1
+
+      - hostname: switch_1
+        type: switch
+        num_ports: 4
+
+      - hostname: router_1
+        type: router
+        num_ports: 1
+        ports:
+          1:
+            ip_address: 192.168.1.1
+            subnet_mask: 255.255.255.0
+        acl:
+          10:
+            action: PERMIT
+            src_ip: 192.168.1.0
+            src_wildcard_mask: 0.0.0.255
+            dst_ip: 192.168.1.1
+            dst_wildcard_mask: 0.0.0.0
+
+    links:
+      - endpoint_a_hostname: pc_1
+        endpoint_a_port: 1
+        endpoint_b_hostname: switch_1
+        endpoint_b_port: 1
+      - endpoint_a_hostname: pc_2
+        endpoint_a_port: 1
+        endpoint_b_hostname: switch_1
+        endpoint_b_port: 2
+      - endpoint_a_hostname: server_1
+        endpoint_a_port: 1
+        endpoint_b_hostname: switch_1
+        endpoint_b_port: 3
+      - endpoint_a_hostname: router_1
+        endpoint_a_port: 1
+        endpoint_b_hostname: switch_1
+        endpoint_b_port: 4

src/primaite/config/_package_data/client_server_p2p_network_example.yaml

@@ -0,0 +1,26 @@
+game:
+  ports:
+  - ARP
+  protocols:
+  - ICMP
+  - TCP
+  - UDP
+
+simulation:
+  network:
+    nodes:
+      - hostname: pc_1
+        type: computer
+        ip_address: 192.168.1.11
+        subnet_mask: 255.255.255.0
+
+      - hostname: server_1
+        type: server
+        ip_address: 192.168.1.13
+        subnet_mask: 255.255.255.0
+
+    links:
+      - endpoint_a_hostname: pc_1
+        endpoint_a_port: 1
+        endpoint_b_hostname: server_1
+        endpoint_b_port: 1

src/primaite/config/_package_data/multi_lan_internet_network_example.yaml

@@ -0,0 +1,439 @@
+game:
+  ports:
+  - ARP
+  - DNS
+  - HTTP
+  - POSTGRES_SERVER
+  protocols:
+  - ICMP
+  - TCP
+  - UDP
+
+simulation:
+  network:
+    nodes:
+      # Home/Office Network
+      - hostname: pc_1
+        type: computer
+        ip_address: 192.168.1.11
+        subnet_mask: 255.255.255.0
+        default_gateway: 192.168.1.1
+        dns_server: 8.8.8.2
+        applications:
+          - type: DatabaseClient
+            options:
+              db_server_ip: 10.10.1.11
+          - type: WebBrowser
+            options:
+              target_url: http://sometech.ai
+
+      - hostname: pc_2
+        type: computer
+        ip_address: 192.168.1.12
+        subnet_mask: 255.255.255.0
+        default_gateway: 192.168.1.1
+        dns_server: 8.8.8.2
+        applications:
+          - type: DatabaseClient
+            options:
+              db_server_ip: 10.10.1.11
+          - type: WebBrowser
+            options:
+              target_url: http://sometech.ai
+
+      - hostname: server_1
+        type: server
+        ip_address: 192.168.1.13
+        subnet_mask: 255.255.255.0
+        default_gateway: 192.168.1.1
+        dns_server: 8.8.8.2
+
+      - hostname: switch_1
+        type: switch
+        num_ports: 4
+
+      - hostname: router_1
+        type: router
+        num_ports: 2
+        ports:
+          1:
+            ip_address: 192.168.1.1
+            subnet_mask: 255.255.255.0
+          2:
+            ip_address: 43.35.240.2
+            subnet_mask: 255.255.255.252
+        acl:
+          10:
+            action: PERMIT
+        default_route: # Default route to all external networks
+          next_hop_ip_address: 43.35.240.1 # NI 1 on icp_router
+
+      # ISP Network
+      - hostname: isp_rt
+        type: router
+        num_ports: 3
+        ports:
+          1:
+            ip_address: 43.35.240.1
+            subnet_mask: 255.255.255.252
+          2:
+            ip_address: 94.10.180.1
+            subnet_mask: 255.255.255.252
+          3:
+            ip_address: 8.8.8.1
+            subnet_mask: 255.255.255.252
+        acl:
+          10:
+            action: PERMIT
+        routes:
+          - address: 192.168.1.0 # Route to the Home/Office LAN
+            subnet_mask: 255.255.255.0
+            next_hop_ip_address: 43.35.240.2 # NI 2 on router_1
+          - address: 10.10.0.0 # Route to the SomeTech internal network
+            subnet_mask: 255.255.0.0
+            next_hop_ip_address: 94.10.180.2 # NI ext on some_tech_fw
+          - address: 94.10.180.6 # Route to the Web Server in the SomeTech DMZ
+            subnet_mask: 255.255.255.255
+            next_hop_ip_address: 94.10.180.2 # NI ext on some_tech_fw
+
+      - hostname: isp_dns_srv
+        type: server
+        ip_address: 8.8.8.2
+        subnet_mask: 255.255.255.252
+        default_gateway: 8.8.8.1
+        services:
+          - ref: dns_server
+            type: DNSServer
+            options:
+              domain_mapping:
+                sometech.ai: 94.10.180.6
+
+      # SomeTech Network
+      - hostname: some_tech_fw
+        type: firewall
+        ports:
+          external_port: # port 1
+            ip_address: 94.10.180.2
+            subnet_mask: 255.255.255.252
+          internal_port: # port 2
+            ip_address: 10.10.4.2
+            subnet_mask: 255.255.255.252
+          dmz_port: # port 3
+            ip_address: 94.10.180.5
+            subnet_mask: 255.255.255.252
+        acl:
+          internal_inbound_acl:
+            8: # Permit some_tech_web_srv to connect to Database service on some_tech_db_srv
+              action: PERMIT
+              src_ip: 94.10.180.6
+              src_wildcard_mask: 0.0.0.0
+              src_port: POSTGRES_SERVER
+              dst_ip: 10.10.1.11
+              dst_wildcard_mask: 0.0.0.0
+              dst_port: POSTGRES_SERVER
+            9: # Permit SomeTech to use HTTP
+              action: PERMIT
+              src_port: HTTP
+            10: # Permit SomeTech to use DNS
+              action: PERMIT
+              src_port: DNS
+              dst_port: DNS
+          internal_outbound_acl:
+            10: # Permit all internal outbound traffic
+              action: PERMIT
+          dmz_inbound_acl:
+            7: # Permit Database service on some_tech_db_srv to respond to some_tech_web_srv
+              action: PERMIT
+              src_ip: 10.10.1.11
+              src_port: POSTGRES_SERVER
+              src_wildcard_mask: 0.0.0.0
+              dst_ip: 94.10.180.6
+              dst_port: POSTGRES_SERVER
+              dst_wildcard_mask: 0.0.0.0
+            8: # Permit SomeTech DMZ to use ARP
+              action: PERMIT
+              src_port: ARP
+              dst_port: ARP
+            9: # Permit SomeTech DMZ to use DNS
+              action: PERMIT
+              src_port: DNS
+              dst_port: DNS
+            10: # Permit all inbound HTTP requests
+              action: PERMIT
+              dst_port: HTTP
+          dmz_outbound_acl:
+            7: # Permit some_tech_web_srv to connect to Database service on some_tech_db_srv
+              action: PERMIT
+              src_ip: 94.10.180.6
+              src_port: POSTGRES_SERVER
+              src_wildcard_mask: 0.0.0.0
+              dst_ip: 10.10.1.11
+              dst_port: POSTGRES_SERVER
+              dst_wildcard_mask: 0.0.0.0
+            8: # Permit SomeTech DMZ to use ARP
+              action: PERMIT
+              src_port: ARP
+              dst_port: ARP
+            9: # Permit SomeTech DMZ to use DNS
+              action: PERMIT
+              src_port: DNS
+              dst_port: DNS
+            10: # Permit all outbound HTTP requests
+              action: PERMIT
+              src_port: HTTP
+        default_route: # Default route to all external networks
+          next_hop_ip_address: 94.10.180.1 # NI 2 on isp_rt
+        routes:
+          - address: 10.10.0.0 # Route to the SomeTech internal LAN
+            subnet_mask: 255.255.0.0
+            next_hop_ip_address: 10.10.4.1 # NI 1 on some_tech_rt
+
+
+      - hostname: some_tech_web_srv
+        type: server
+        ip_address: 94.10.180.6
+        subnet_mask: 255.255.255.252
+        default_gateway: 94.10.180.5
+        dns_server: 8.8.8.2
+        services:
+          - ref: web_server
+            type: WebServer
+        applications:
+          - type: DatabaseClient
+            options:
+              db_server_ip: 10.10.1.11
+
+      - hostname: some_tech_rt
+        type: router
+        num_ports: 4
+        ports:
+          1:
+            ip_address: 10.10.1.1
+            subnet_mask: 255.255.255.0
+          2:
+            ip_address: 10.10.4.1
+            subnet_mask: 255.255.255.252
+          3:
+            ip_address: 10.10.3.1
+            subnet_mask: 255.255.255.0
+          4:
+            ip_address: 10.10.2.1
+            subnet_mask: 255.255.255.0
+
+        acl:
+          2: # Allow the some_tech_web_srv to connect to the Database Service on some_tech_db_srv
+            action: PERMIT
+            src_ip: 94.10.180.6
+            src_wildcard_mask: 0.0.0.0
+            src_port: POSTGRES_SERVER
+            dst_ip: 10.10.1.11
+            dst_wildcard_mask: 0.0.0.0
+            dst_port: POSTGRES_SERVER
+          3: # Allow the Database Service on some_tech_db_srv to respond to some_tech_web_srv
+            action: PERMIT
+            src_ip: 10.10.1.11
+            src_wildcard_mask: 0.0.0.0
+            src_port: POSTGRES_SERVER
+            dst_ip: 94.10.180.6
+            dst_wildcard_mask: 0.0.0.0
+            dst_port: POSTGRES_SERVER
+          4: # Prevent the Junior engineer from downloading files from the some_tech_storage_srv over FTP
+            action: DENY
+            src_ip: 10.10.2.12
+            src_wildcard_mask: 0.0.0.0
+            src_port: FTP
+            dst_ip: 10.10.1.12
+            dst_wildcard_mask: 0.0.0.0
+            dst_port: FTP
+          5: # Allow communication between Engineering and the DB & Storage subnet
+            action: PERMIT
+            src_ip: 10.10.2.0
+            src_wildcard_mask: 0.0.0.255
+            dst_ip: 10.10.1.0
+            dst_wildcard_mask: 0.0.0.255
+          6: # Allow communication between the DB & Storage subnet and Engineering
+            action: PERMIT
+            src_ip: 10.10.1.0
+            src_wildcard_mask: 0.0.0.255
+            dst_ip: 10.10.2.0
+            dst_wildcard_mask: 0.0.0.255
+          7: # Allow the SomeTech network to use HTTP
+            action: PERMIT
+            src_port: HTTP
+            dst_port: HTTP
+          8: # Allow the SomeTech internal network to use ARP
+            action: PERMIT
+            src_ip: 10.10.0.0
+            src_wildcard_mask: 0.0.255.255
+            src_port: ARP
+          9: # Allow the SomeTech internal network to use ICMP
+            action: PERMIT
+            src_ip: 10.10.0.0
+            src_wildcard_mask: 0.0.255.255
+            protocol: ICMP
+          10:
+            action: PERMIT
+            src_ip: 94.10.180.6
+            src_wildcard_mask: 0.0.0.0
+            src_port: HTTP
+            dst_ip: 10.10.0.0
+            dst_wildcard_mask: 0.0.255.255
+            dst_port: HTTP
+          11: # Permit SomeTech to use DNS
+            action: PERMIT
+            src_port: DNS
+            dst_port: DNS
+        default_route: # Default route to all external networks
+          next_hop_ip_address: 10.10.4.2 # NI int on some_tech_fw
+
+
+      - hostname: some_tech_data_sw
+        type: switch
+        num_ports: 3
+
+      - hostname: some_tech_hr_sw
+        type: switch
+        num_ports: 2
+
+      - hostname: some_tech_eng_sw
+        type: switch
+        num_ports: 3
+
+      - hostname: some_tech_db_srv
+        type: server
+        ip_address: 10.10.1.11
+        subnet_mask: 255.255.255.0
+        default_gateway: 10.10.1.1
+        dns_server: 8.8.8.2
+        services:
+          - type: DatabaseService
+            options:
+              backup_server_ip: 10.10.1.12 # The some_tech_storage_srv server
+          - type: FTPClient
+
+      - hostname: some_tech_storage_srv
+        type: server
+        ip_address: 10.10.1.12
+        subnet_mask: 255.255.255.0
+        default_gateway: 10.10.1.1
+        dns_server: 8.8.8.2
+        services:
+          - type: FTPServer
+
+      - hostname: some_tech_hr_1
+        type: computer
+        ip_address: 10.10.3.11
+        subnet_mask: 255.255.255.0
+        default_gateway: 10.10.3.1
+        dns_server: 8.8.8.2
+        applications:
+          - type: DatabaseClient
+            options:
+              db_server_ip: 10.10.1.11
+          - type: WebBrowser
+            options:
+              target_url: http://sometech.ai
+
+      - hostname: some_tech_snr_dev_pc
+        type: computer
+        ip_address: 10.10.2.11
+        subnet_mask: 255.255.255.0
+        default_gateway: 10.10.2.1
+        dns_server: 8.8.8.2
+        applications:
+          - type: DatabaseClient
+            options:
+              db_server_ip: 10.10.1.11
+          - type: WebBrowser
+            options:
+              target_url: http://sometech.ai
+
+      - hostname: some_tech_jnr_dev_pc
+        type: computer
+        ip_address: 10.10.2.12
+        subnet_mask: 255.255.255.0
+        default_gateway: 10.10.2.1
+        dns_server: 8.8.8.2
+        applications:
+          - type: DatabaseClient
+            options:
+              db_server_ip: 10.10.1.11
+          - type: WebBrowser
+            options:
+              target_url: http://sometech.ai
+
+    links:
+      # Home/Office Lan Links
+      - endpoint_a_hostname: pc_1
+        endpoint_a_port: 1
+        endpoint_b_hostname: switch_1
+        endpoint_b_port: 1
+      - endpoint_a_hostname: pc_2
+        endpoint_a_port: 1
+        endpoint_b_hostname: switch_1
+        endpoint_b_port: 2
+      - endpoint_a_hostname: server_1
+        endpoint_a_port: 1
+        endpoint_b_hostname: switch_1
+        endpoint_b_port: 3
+      - endpoint_a_hostname: router_1
+        endpoint_a_port: 1
+        endpoint_b_hostname: switch_1
+        endpoint_b_port: 4
+
+      # ISP Links
+      - endpoint_a_hostname: isp_rt
+        endpoint_a_port: 1
+        endpoint_b_hostname: router_1
+        endpoint_b_port: 2
+      - endpoint_a_hostname: isp_rt
+        endpoint_a_port: 2
+        endpoint_b_hostname: some_tech_fw
+        endpoint_b_port: 1
+      - endpoint_a_hostname: isp_rt
+        endpoint_a_port: 3
+        endpoint_b_hostname: isp_dns_srv
+        endpoint_b_port: 1
+
+
+      # SomeTech LAN Links
+      - endpoint_a_hostname: some_tech_fw
+        endpoint_a_port: 3
+        endpoint_b_hostname: some_tech_web_srv
+        endpoint_b_port: 1
+      - endpoint_a_hostname: some_tech_fw
+        endpoint_a_port: 2
+        endpoint_b_hostname: some_tech_rt
+        endpoint_b_port: 2
+      - endpoint_a_hostname: some_tech_rt
+        endpoint_a_port: 1
+        endpoint_b_hostname: some_tech_data_sw
+        endpoint_b_port: 3
+      - endpoint_a_hostname: some_tech_rt
+        endpoint_a_port: 3
+        endpoint_b_hostname: some_tech_hr_sw
+        endpoint_b_port: 2
+      - endpoint_a_hostname: some_tech_rt
+        endpoint_a_port: 4
+        endpoint_b_hostname: some_tech_eng_sw
+        endpoint_b_port: 3
+      - endpoint_a_hostname: some_tech_data_sw
+        endpoint_a_port: 1
+        endpoint_b_hostname: some_tech_db_srv
+        endpoint_b_port: 1
+      - endpoint_a_hostname: some_tech_data_sw
+        endpoint_a_port: 2
+        endpoint_b_hostname: some_tech_storage_srv
+        endpoint_b_port: 1
+      - endpoint_a_hostname: some_tech_hr_sw
+        endpoint_a_port: 1
+        endpoint_b_hostname: some_tech_hr_1
+        endpoint_b_port: 1
+      - endpoint_a_hostname: some_tech_eng_sw
+        endpoint_a_port: 1
+        endpoint_b_hostname: some_tech_snr_dev_pc
+        endpoint_b_port: 1
+      - endpoint_a_hostname: some_tech_eng_sw
+        endpoint_a_port: 2
+        endpoint_b_hostname: some_tech_jnr_dev_pc
+        endpoint_b_port: 1

src/primaite/game/game.py

@@ -14,7 +14,6 @@ from primaite.game.agent.scripted_agents.probabilistic_agent import Probabilisti
 from primaite.game.agent.scripted_agents.random_agent import PeriodicAgent
 from primaite.game.agent.scripted_agents.tap001 import TAP001
 from primaite.game.science import graph_has_cycle, topological_sort
-from primaite.simulator.network.airspace import AIR_SPACE
 from primaite.simulator.network.hardware.base import NodeOperatingState
 from primaite.simulator.network.hardware.nodes.host.computer import Computer
 from primaite.simulator.network.hardware.nodes.host.host_node import NIC
@@ -222,7 +221,6 @@ class PrimaiteGame:
         :return: A PrimaiteGame object.
         :rtype: PrimaiteGame
         """
-        AIR_SPACE.clear()
         game = cls()
         game.options = PrimaiteGameOptions(**cfg["game"])
         game.save_step_metadata = cfg.get("io_settings", {}).get("save_step_metadata") or False
@@ -244,7 +242,7 @@ class PrimaiteGame:
                     hostname=node_cfg["hostname"],
                     ip_address=node_cfg["ip_address"],
                     subnet_mask=IPv4Address(node_cfg.get("subnet_mask", "255.255.255.0")),
-                    default_gateway=node_cfg["default_gateway"],
+                    default_gateway=node_cfg.get("default_gateway"),
                     dns_server=node_cfg.get("dns_server", None),
                     operating_state=NodeOperatingState.ON
                     if not (p := node_cfg.get("operating_state"))
@@ -255,7 +253,7 @@ class PrimaiteGame:
                     hostname=node_cfg["hostname"],
                     ip_address=node_cfg["ip_address"],
                     subnet_mask=IPv4Address(node_cfg.get("subnet_mask", "255.255.255.0")),
-                    default_gateway=node_cfg["default_gateway"],
+                    default_gateway=node_cfg.get("default_gateway"),
                     dns_server=node_cfg.get("dns_server", None),
                     operating_state=NodeOperatingState.ON
                     if not (p := node_cfg.get("operating_state"))
@@ -274,7 +272,7 @@ class PrimaiteGame:
             elif n_type == "firewall":
                 new_node = Firewall.from_config(node_cfg)
             elif n_type == "wireless_router":
-                new_node = WirelessRouter.from_config(node_cfg)
+                new_node = WirelessRouter.from_config(node_cfg, airspace=net.airspace)
             elif n_type == "printer":
                 new_node = Printer(
                     hostname=node_cfg["hostname"],

src/primaite/notebooks/Data-Manipulation-E2E-Demonstration.ipynb

@@ -404,7 +404,7 @@
     "    # don't flatten observations so that we can see what is going on\n",
     "    cfg['agents'][3]['agent_settings']['flatten_obs'] = False\n",
     "\n",
-    "env = PrimaiteGymEnv(game_config = cfg)\n",
+    "env = PrimaiteGymEnv(env_config = cfg)\n",
     "obs, info = env.reset()\n",
     "print('env created successfully')\n",
     "pprint(obs)"

src/primaite/notebooks/Training-an-SB3-Agent.ipynb

@@ -59,7 +59,7 @@
    "metadata": {},
    "outputs": [],
    "source": [
-    "gym = PrimaiteGymEnv(game_config=cfg)"
+    "gym = PrimaiteGymEnv(env_config=cfg)"
    ]
   },
   {

src/primaite/session/environment.py

@@ -35,7 +35,6 @@ class PrimaiteGymEnv(gymnasium.Env):
         """Current game."""
         self._agent_name = next(iter(self.game.rl_agents))
         """Name of the RL agent. Since there should only be one RL agent we can just pull the first and only key."""
-
         self.episode_counter: int = 0
         """Current episode number."""
 
@@ -49,8 +48,8 @@ class PrimaiteGymEnv(gymnasium.Env):
         # make ProxyAgent store the action chosen by the RL policy
         step = self.game.step_counter
         self.agent.store_action(action)
-        # apply_agent_actions accesses the action we just stored
         self.game.pre_timestep()
+        # apply_agent_actions accesses the action we just stored
         self.game.apply_agent_actions()
         self.game.advance_timestep()
         state = self.game.get_sim_state()
@@ -58,6 +57,7 @@ class PrimaiteGymEnv(gymnasium.Env):
 
         next_obs = self._get_obs()  # this doesn't update observation, just gets the current observation
         reward = self.agent.reward_function.current_reward
+        _LOGGER.info(f"step: {self.game.step_counter}, Blue reward: {reward}")
         terminated = False
         truncated = self.game.calculate_truncated()
         info = {
@@ -204,9 +204,13 @@ class PrimaiteRayMARLEnv(MultiAgentEnv):
 
     def reset(self, *, seed: int = None, options: dict = None) -> Tuple[ObsType, Dict]:
         """Reset the environment."""
+        rewards = {name: agent.reward_function.total_reward for name, agent in self.agents.items()}
+        _LOGGER.info(f"Resetting environment, episode {self.episode_counter}, " f"avg. reward: {rewards}")
+
         if self.io.settings.save_agent_actions:
             all_agent_actions = {name: agent.action_history for name, agent in self.game.agents.items()}
             self.io.write_agent_actions(agent_actions=all_agent_actions, episode=self.episode_counter)
+
         self.episode_counter += 1
         self.game: PrimaiteGame = PrimaiteGame.from_config(self.episode_scheduler(self.episode_counter))
         self.game.setup_for_episode(episode=self.episode_counter)
@@ -244,6 +248,7 @@ class PrimaiteRayMARLEnv(MultiAgentEnv):
 
         # 4. Get rewards
         rewards = {name: agent.reward_function.current_reward for name, agent in self.agents.items()}
+        _LOGGER.info(f"step: {self.game.step_counter}, Rewards: {rewards}")
         terminateds = {name: False for name, _ in self.agents.items()}
         truncateds = {name: self.game.calculate_truncated() for name, _ in self.agents.items()}
         infos = {name: {} for name, _ in self.agents.items()}

src/primaite/session/io.py

@@ -5,9 +5,9 @@ from typing import Dict, List, Optional
 
 from pydantic import BaseModel, ConfigDict
 
-from primaite import getLogger, PRIMAITE_PATHS
+from primaite import _PRIMAITE_ROOT, getLogger, PRIMAITE_CONFIG, PRIMAITE_PATHS
 from primaite.simulator import LogLevel, SIM_OUTPUT
-from src.primaite.utils.primaite_config_utils import is_dev_mode
+from primaite.utils.cli.primaite_config_utils import is_dev_mode
 
 _LOGGER = getLogger(__name__)
 
@@ -62,12 +62,15 @@ class PrimaiteIO:
         date_str = timestamp.strftime("%Y-%m-%d")
         time_str = timestamp.strftime("%H-%M-%S")
 
+        session_path = PRIMAITE_PATHS.user_sessions_path / date_str / time_str
+
         # check if running in dev mode
         if is_dev_mode():
-            # if dev mode, simulation output will be the current working directory
-            session_path = Path.cwd() / "simulation_output" / date_str / time_str
-        else:
-            session_path = PRIMAITE_PATHS.user_sessions_path / date_str / time_str
+            session_path = _PRIMAITE_ROOT.parent.parent / "sessions" / date_str / time_str
+
+            # check if there is an output directory set in config
+            if PRIMAITE_CONFIG["developer_mode"]["output_dir"]:
+                session_path = Path(PRIMAITE_CONFIG["developer_mode"]["output_dir"]) / "sessions" / date_str / time_str
 
         session_path.mkdir(exist_ok=True, parents=True)
         return session_path

src/primaite/setup/_package_data/primaite_config.yaml

@@ -1,6 +1,12 @@
 # The main PrimAITE application config file
 
-developer_mode: False  # false by default
+developer_mode:
+  enabled: False  # not enabled by default
+  sys_log_level: DEBUG # level of output for system logs, DEBUG by default
+  output_sys_logs: False  # system logs not output by default
+  output_pcap_logs: False  # pcap logs not output by default
+  output_to_terminal: False  # do not output to terminal by default
+  output_dir: null  # none by default - none will print to repository root
 
 # Logging
 logging:

src/primaite/simulator/__init__.py

@@ -3,10 +3,12 @@ from datetime import datetime
 from enum import IntEnum
 from pathlib import Path
 
-from primaite import _PRIMAITE_ROOT
+from primaite import _PRIMAITE_ROOT, PRIMAITE_CONFIG, PRIMAITE_PATHS
 
 __all__ = ["SIM_OUTPUT"]
 
+from primaite.utils.cli.primaite_config_utils import is_dev_mode
+
 
 class LogLevel(IntEnum):
     """Enum containing all the available log levels for PrimAITE simulation output."""
@@ -25,16 +27,34 @@ class LogLevel(IntEnum):
 
 class _SimOutput:
     def __init__(self):
-        self._path: Path = (
-            _PRIMAITE_ROOT.parent.parent / "simulation_output" / datetime.now().strftime("%Y-%m-%d_%H-%M-%S")
-        )
-        self.save_pcap_logs: bool = False
-        self.save_sys_logs: bool = False
-        self.write_sys_log_to_terminal: bool = False
-        self.sys_log_level: LogLevel = LogLevel.WARNING  # default log level is at WARNING
+        date_str = datetime.now().strftime("%Y-%m-%d")
+        time_str = datetime.now().strftime("%H-%M-%S")
+
+        path = PRIMAITE_PATHS.user_sessions_path / date_str / time_str
+
+        self._path = path
+        self._save_pcap_logs: bool = False
+        self._save_sys_logs: bool = False
+        self._write_sys_log_to_terminal: bool = False
+        self._sys_log_level: LogLevel = LogLevel.WARNING  # default log level is at WARNING
 
     @property
     def path(self) -> Path:
+        if is_dev_mode():
+            date_str = datetime.now().strftime("%Y-%m-%d")
+            time_str = datetime.now().strftime("%H-%M-%S")
+            # if dev mode is enabled, if output dir is not set, print to primaite repo root
+            path: Path = _PRIMAITE_ROOT.parent.parent / "sessions" / date_str / time_str / "simulation_output"
+            # otherwise print to output dir
+            if PRIMAITE_CONFIG["developer_mode"]["output_dir"]:
+                path: Path = (
+                    Path(PRIMAITE_CONFIG["developer_mode"]["output_dir"])
+                    / "sessions"
+                    / date_str
+                    / time_str
+                    / "simulation_output"
+                )
+            self._path = path
         return self._path
 
     @path.setter
@@ -42,5 +62,45 @@ class _SimOutput:
         self._path = new_path
         self._path.mkdir(exist_ok=True, parents=True)
 
+    @property
+    def save_pcap_logs(self) -> bool:
+        if is_dev_mode():
+            return PRIMAITE_CONFIG.get("developer_mode").get("output_pcap_logs")
+        return self._save_pcap_logs
+
+    @save_pcap_logs.setter
+    def save_pcap_logs(self, save_pcap_logs: bool) -> None:
+        self._save_pcap_logs = save_pcap_logs
+
+    @property
+    def save_sys_logs(self) -> bool:
+        if is_dev_mode():
+            return PRIMAITE_CONFIG.get("developer_mode").get("output_sys_logs")
+        return self._save_sys_logs
+
+    @save_sys_logs.setter
+    def save_sys_logs(self, save_sys_logs: bool) -> None:
+        self._save_sys_logs = save_sys_logs
+
+    @property
+    def write_sys_log_to_terminal(self) -> bool:
+        if is_dev_mode():
+            return PRIMAITE_CONFIG.get("developer_mode").get("output_to_terminal")
+        return self._write_sys_log_to_terminal
+
+    @write_sys_log_to_terminal.setter
+    def write_sys_log_to_terminal(self, write_sys_log_to_terminal: bool) -> None:
+        self._write_sys_log_to_terminal = write_sys_log_to_terminal
+
+    @property
+    def sys_log_level(self) -> LogLevel:
+        if is_dev_mode():
+            return LogLevel[PRIMAITE_CONFIG.get("developer_mode").get("sys_log_level")]
+        return self._sys_log_level
+
+    @sys_log_level.setter
+    def sys_log_level(self, sys_log_level: LogLevel) -> None:
+        self._sys_log_level = sys_log_level
+
 
 SIM_OUTPUT = _SimOutput()

src/primaite/simulator/network/airspace.py

@@ -2,7 +2,7 @@ from __future__ import annotations
 
 from abc import ABC, abstractmethod
 from enum import Enum
-from typing import Any, Dict, Final, List, Optional
+from typing import Any, Dict, List, Optional
 
 from prettytable import PrettyTable
 
@@ -14,7 +14,7 @@ from primaite.simulator.system.core.packet_capture import PacketCapture
 
 _LOGGER = getLogger(__name__)
 
-__all__ = ["AIR_SPACE", "AirSpaceFrequency", "WirelessNetworkInterface", "IPWirelessNetworkInterface"]
+__all__ = ["AirSpaceFrequency", "WirelessNetworkInterface", "IPWirelessNetworkInterface"]
 
 
 class AirSpace:
@@ -100,18 +100,6 @@ class AirSpace:
                 wireless_interface.receive_frame(frame)
 
 
-AIR_SPACE: Final[AirSpace] = AirSpace()
-"""
-A singleton instance of the AirSpace class, representing the global wireless airspace.
-
-This instance acts as the central management point for all wireless communications within the simulated network
-environment. By default, there is only one airspace in the simulation, making this variable a singleton that
-manages the registration, removal, and transmission of wireless frames across all wireless network interfaces configured
-in the simulation. It ensures that wireless frames are appropriately transmitted to and received by wireless
-interfaces based on their operational status and frequency band.
-"""
-
-
 class AirSpaceFrequency(Enum):
     """Enumeration representing the operating frequencies for wireless communications."""
 
@@ -149,6 +137,7 @@ class WirelessNetworkInterface(NetworkInterface, ABC):
     and may define additional properties and methods specific to wireless technology.
     """
 
+    airspace: AirSpace
     frequency: AirSpaceFrequency = AirSpaceFrequency.WIFI_2_4
 
     def enable(self):
@@ -171,7 +160,7 @@ class WirelessNetworkInterface(NetworkInterface, ABC):
         self.pcap = PacketCapture(
             hostname=self._connected_node.hostname, port_num=self.port_num, port_name=self.port_name
         )
-        AIR_SPACE.add_wireless_interface(self)
+        self.airspace.add_wireless_interface(self)
 
     def disable(self):
         """Disable the network interface."""
@@ -182,7 +171,7 @@ class WirelessNetworkInterface(NetworkInterface, ABC):
             self._connected_node.sys_log.info(f"Network Interface {self} disabled")
         else:
             _LOGGER.debug(f"Interface {self} disabled")
-        AIR_SPACE.remove_wireless_interface(self)
+        self.airspace.remove_wireless_interface(self)
 
     def send_frame(self, frame: Frame) -> bool:
         """
@@ -198,7 +187,7 @@ class WirelessNetworkInterface(NetworkInterface, ABC):
         if self.enabled:
             frame.set_sent_timestamp()
             self.pcap.capture_outbound(frame)
-            AIR_SPACE.transmit(frame, self)
+            self.airspace.transmit(frame, self)
             return True
         # Cannot send Frame as the network interface is not enabled
         return False

src/primaite/simulator/network/container.py

@@ -5,9 +5,11 @@ import matplotlib.pyplot as plt
 import networkx as nx
 from networkx import MultiGraph
 from prettytable import MARKDOWN, PrettyTable
+from pydantic import Field
 
 from primaite import getLogger
 from primaite.simulator.core import RequestManager, RequestType, SimComponent
+from primaite.simulator.network.airspace import AirSpace
 from primaite.simulator.network.hardware.base import Link, Node, WiredNetworkInterface
 from primaite.simulator.network.hardware.nodes.host.server import Printer
 from primaite.simulator.system.applications.application import Application
@@ -28,7 +30,9 @@ class Network(SimComponent):
     """
 
     nodes: Dict[str, Node] = {}
+
     links: Dict[str, Link] = {}
+    airspace: AirSpace = Field(default_factory=lambda: AirSpace())
     _node_id_map: Dict[int, Node] = {}
     _link_id_map: Dict[int, Node] = {}
 

src/primaite/simulator/network/hardware/nodes/network/firewall.py

@@ -330,7 +330,7 @@ class Firewall(Router):
         # check if External Inbound ACL Rules permit frame
         permitted, rule = self.external_inbound_acl.is_permitted(frame)
         if not permitted:
-            self.sys_log.info(f"Frame blocked at interface {from_network_interface} by rule {rule}")
+            self.sys_log.info(f"Frame blocked at external inbound by rule {rule}")
             return
         self.software_manager.arp.add_arp_cache_entry(
             ip_address=frame.ip.src_ip_address,
@@ -360,7 +360,7 @@ class Firewall(Router):
         # check if External Outbound ACL Rules permit frame
         permitted, rule = self.external_outbound_acl.is_permitted(frame=frame)
         if not permitted:
-            self.sys_log.info(f"Frame blocked at interface {from_network_interface} by rule {rule}")
+            self.sys_log.info(f"Frame blocked at external outbound by rule {rule}")
             return
 
         self.process_frame(frame=frame, from_network_interface=from_network_interface)
@@ -380,7 +380,7 @@ class Firewall(Router):
         # check if Internal Inbound ACL Rules permit frame
         permitted, rule = self.internal_inbound_acl.is_permitted(frame=frame)
         if not permitted:
-            self.sys_log.info(f"Frame blocked at interface {from_network_interface} by rule {rule}")
+            self.sys_log.info(f"Frame blocked at internal inbound by rule {rule}")
             return
 
         self.process_frame(frame=frame, from_network_interface=from_network_interface)
@@ -398,7 +398,7 @@ class Firewall(Router):
         """
         permitted, rule = self.internal_outbound_acl.is_permitted(frame)
         if not permitted:
-            self.sys_log.info(f"Frame blocked at interface {from_network_interface} by rule {rule}")
+            self.sys_log.info(f"Frame blocked at internal outbound by rule {rule}")
             return
         self.software_manager.arp.add_arp_cache_entry(
             ip_address=frame.ip.src_ip_address,
@@ -432,7 +432,7 @@ class Firewall(Router):
         # check if DMZ Inbound ACL Rules permit frame
         permitted, rule = self.dmz_inbound_acl.is_permitted(frame=frame)
         if not permitted:
-            self.sys_log.info(f"Frame blocked at interface {from_network_interface} by rule {rule}")
+            self.sys_log.info(f"Frame blocked at DMZ inbound by rule {rule}")
             return
 
         self.process_frame(frame=frame, from_network_interface=from_network_interface)
@@ -452,7 +452,7 @@ class Firewall(Router):
         """
         permitted, rule = self.dmz_outbound_acl.is_permitted(frame)
         if not permitted:
-            self.sys_log.info(f"Frame blocked at interface {from_network_interface} by rule {rule}")
+            self.sys_log.info(f"Frame blocked at DMZ outbound by rule {rule}")
             return
         self.software_manager.arp.add_arp_cache_entry(
             ip_address=frame.ip.src_ip_address,
@@ -688,4 +688,9 @@ class Firewall(Router):
                     next_hop_ip_address=IPv4Address(route.get("next_hop_ip_address")),
                     metric=float(route.get("metric", 0)),
                 )
+        if "default_route" in cfg:
+            next_hop_ip_address = cfg["default_route"].get("next_hop_ip_address", None)
+            if next_hop_ip_address:
+                firewall.route_table.set_default_route_next_hop_ip_address(next_hop_ip_address)
+
         return firewall

src/primaite/simulator/network/hardware/nodes/network/router.py

@@ -1546,7 +1546,7 @@ class Router(NetworkNode):
         print(table)
 
     @classmethod
-    def from_config(cls, cfg: dict) -> "Router":
+    def from_config(cls, cfg: dict, **kwargs) -> "Router":
         """Create a router based on a config dict.
 
         Schema:

src/primaite/simulator/network/hardware/nodes/network/wireless_router.py

@@ -3,7 +3,7 @@ from typing import Any, Dict, Union
 
 from pydantic import validate_call
 
-from primaite.simulator.network.airspace import AirSpaceFrequency, IPWirelessNetworkInterface
+from primaite.simulator.network.airspace import AirSpace, AirSpaceFrequency, IPWirelessNetworkInterface
 from primaite.simulator.network.hardware.node_operating_state import NodeOperatingState
 from primaite.simulator.network.hardware.nodes.network.router import ACLAction, Router, RouterInterface
 from primaite.simulator.network.transmission.data_link_layer import Frame
@@ -121,11 +121,14 @@ class WirelessRouter(Router):
 
     network_interfaces: Dict[str, Union[RouterInterface, WirelessAccessPoint]] = {}
     network_interface: Dict[int, Union[RouterInterface, WirelessAccessPoint]] = {}
+    airspace: AirSpace
 
-    def __init__(self, hostname: str, **kwargs):
-        super().__init__(hostname=hostname, num_ports=0, **kwargs)
+    def __init__(self, hostname: str, airspace: AirSpace, **kwargs):
+        super().__init__(hostname=hostname, num_ports=0, airspace=airspace, **kwargs)
 
-        self.connect_nic(WirelessAccessPoint(ip_address="127.0.0.1", subnet_mask="255.0.0.0", gateway="0.0.0.0"))
+        self.connect_nic(
+            WirelessAccessPoint(ip_address="127.0.0.1", subnet_mask="255.0.0.0", gateway="0.0.0.0", airspace=airspace)
+        )
 
         self.connect_nic(RouterInterface(ip_address="127.0.0.1", subnet_mask="255.0.0.0", gateway="0.0.0.0"))
 
@@ -215,7 +218,7 @@ class WirelessRouter(Router):
         )
 
     @classmethod
-    def from_config(cls, cfg: Dict) -> "WirelessRouter":
+    def from_config(cls, cfg: Dict, **kwargs) -> "WirelessRouter":
         """Generate the wireless router from config.
 
         Schema:
@@ -245,7 +248,7 @@ class WirelessRouter(Router):
         operating_state = (
             NodeOperatingState.ON if not (p := cfg.get("operating_state")) else NodeOperatingState[p.upper()]
         )
-        router = cls(hostname=cfg["hostname"], operating_state=operating_state)
+        router = cls(hostname=cfg["hostname"], operating_state=operating_state, airspace=kwargs["airspace"])
         if "router_interface" in cfg:
             ip_address = cfg["router_interface"]["ip_address"]
             subnet_mask = cfg["router_interface"]["subnet_mask"]

src/primaite/simulator/network/networks.py

@@ -1,5 +1,9 @@
 from ipaddress import IPv4Address
 
+import yaml
+
+from primaite import getLogger, PRIMAITE_PATHS
+from primaite.game.game import PrimaiteGame
 from primaite.simulator.network.container import Network
 from primaite.simulator.network.hardware.nodes.host.computer import Computer
 from primaite.simulator.network.hardware.nodes.host.host_node import NIC
@@ -15,6 +19,8 @@ from primaite.simulator.system.services.dns.dns_server import DNSServer
 from primaite.simulator.system.services.ftp.ftp_server import FTPServer
 from primaite.simulator.system.services.web_server.web_server import WebServer
 
+_LOGGER = getLogger(__name__)
+
 
 def client_server_routed() -> Network:
     """
@@ -279,3 +285,34 @@ def arcd_uc2_network() -> Network:
     router_1.acl.add_rule(action=ACLAction.PERMIT, src_port=Port.HTTP, dst_port=Port.HTTP, position=3)
 
     return network
+
+
+def _get_example_network(path: str) -> Network:
+    try:
+        with open(path, "r") as file:
+            cfg = yaml.safe_load(file)
+    except FileNotFoundError:
+        msg = f"Failed to locate example network config {path}. Run `primaite setup` to load the example config files."
+        _LOGGER.error(msg)
+        raise FileNotFoundError(msg)
+    game = PrimaiteGame.from_config(cfg)
+
+    return game.simulation.network
+
+
+def client_server_p2p_network_example() -> Network:
+    """Get the Client-Server P2P example network."""
+    path = PRIMAITE_PATHS.user_config_path / "example_config" / "client_server_p2p_network_example.yaml"
+    return _get_example_network(path)
+
+
+def basic_lan_network_example() -> Network:
+    """Get the basic LAN example network."""
+    path = PRIMAITE_PATHS.user_config_path / "example_config" / "basic_network_network_example.yaml"
+    return _get_example_network(path)
+
+
+def multi_lan_internet_network_example() -> Network:
+    """Get Multi-LAN with Internet example network."""
+    path = PRIMAITE_PATHS.user_config_path / "example_config" / "multi_lan_internet_network_example.yaml"
+    return _get_example_network(path)

src/primaite/utils/cli/dev_cli.py

@@ -0,0 +1,171 @@
+import click
+import typer
+from rich import print
+from rich.table import Table
+from typing_extensions import Annotated
+
+from primaite import _PRIMAITE_ROOT, PRIMAITE_CONFIG
+from primaite.simulator import LogLevel
+from primaite.utils.cli.primaite_config_utils import is_dev_mode, update_primaite_application_config
+
+dev = typer.Typer()
+
+PRODUCTION_MODE_MESSAGE = (
+    "\n[green]:rocket::rocket::rocket: "
+    " PrimAITE is running in Production mode "
+    " :rocket::rocket::rocket: [/green]\n"
+)
+
+DEVELOPER_MODE_MESSAGE = (
+    "\n[yellow] :construction::construction::construction: "
+    " PrimAITE is running in Development mode "
+    " :construction::construction::construction: [/yellow]\n"
+)
+
+
+def dev_mode():
+    """
+    CLI commands relevant to the dev-mode for PrimAITE.
+
+    The dev-mode contains tools that help with the ease of developing or debugging PrimAITE.
+
+    By default, PrimAITE will be in production mode.
+
+    To enable development mode, use `primaite dev-mode enable`
+    """
+
+
+@dev.command()
+def show():
+    """Show if PrimAITE is in development mode or production mode."""
+    # print if dev mode is enabled
+    print(DEVELOPER_MODE_MESSAGE if is_dev_mode() else PRODUCTION_MODE_MESSAGE)
+
+    table = Table(title="Current Dev-Mode Settings")
+    table.add_column("Setting", style="cyan")
+    table.add_column("Value", style="default")
+    for setting, value in PRIMAITE_CONFIG["developer_mode"].items():
+        table.add_row(setting, str(value))
+
+    print(table)
+    print("\nTo see available options, use [cyan]`primaite dev-mode --help`[/cyan]\n")
+
+
+@dev.command()
+def enable():
+    """Enable the development mode for PrimAITE."""
+    # enable dev mode
+    PRIMAITE_CONFIG["developer_mode"]["enabled"] = True
+    update_primaite_application_config()
+    print(DEVELOPER_MODE_MESSAGE)
+
+
+@dev.command()
+def disable():
+    """Disable the development mode for PrimAITE."""
+    # disable dev mode
+    PRIMAITE_CONFIG["developer_mode"]["enabled"] = False
+    update_primaite_application_config()
+    print(PRODUCTION_MODE_MESSAGE)
+
+
+def config_callback(
+    ctx: typer.Context,
+    sys_log_level: Annotated[
+        LogLevel,
+        typer.Option(
+            "--sys-log-level",
+            "-level",
+            click_type=click.Choice(LogLevel._member_names_, case_sensitive=False),
+            help="The level of system logs to output.",
+            show_default=False,
+        ),
+    ] = None,
+    output_sys_logs: Annotated[
+        bool,
+        typer.Option(
+            "--output-sys-logs/--no-sys-logs", "-sys/-nsys", help="Output system logs to file.", show_default=False
+        ),
+    ] = None,
+    output_pcap_logs: Annotated[
+        bool,
+        typer.Option(
+            "--output-pcap-logs/--no-pcap-logs",
+            "-pcap/-npcap",
+            help="Output network packet capture logs to file.",
+            show_default=False,
+        ),
+    ] = None,
+    output_to_terminal: Annotated[
+        bool,
+        typer.Option(
+            "--output-to-terminal/--no-terminal", "-t/-nt", help="Output system logs to terminal.", show_default=False
+        ),
+    ] = None,
+):
+    """Configure the development tools and environment."""
+    if ctx.params.get("sys_log_level") is not None:
+        PRIMAITE_CONFIG["developer_mode"]["sys_log_level"] = ctx.params.get("sys_log_level")
+        print(f"PrimAITE dev-mode config updated sys_log_level={ctx.params.get('sys_log_level')}")
+
+    if output_sys_logs is not None:
+        PRIMAITE_CONFIG["developer_mode"]["output_sys_logs"] = output_sys_logs
+        print(f"PrimAITE dev-mode config updated {output_sys_logs=}")
+
+    if output_pcap_logs is not None:
+        PRIMAITE_CONFIG["developer_mode"]["output_pcap_logs"] = output_pcap_logs
+        print(f"PrimAITE dev-mode config updated {output_pcap_logs=}")
+
+    if output_to_terminal is not None:
+        PRIMAITE_CONFIG["developer_mode"]["output_to_terminal"] = output_to_terminal
+        print(f"PrimAITE dev-mode config updated {output_to_terminal=}")
+
+    # update application config
+    update_primaite_application_config()
+
+
+config_typer = typer.Typer(
+    callback=config_callback,
+    name="config",
+    no_args_is_help=True,
+    invoke_without_command=True,
+)
+dev.add_typer(config_typer)
+
+
+@config_typer.command()
+def path(
+    directory: Annotated[
+        str,
+        typer.Argument(
+            help="Directory where the system logs and PCAP logs will be output. By default, this will be where the"
+            "root of the PrimAITE repository is located.",
+            show_default=False,
+        ),
+    ] = None,
+    default: Annotated[
+        bool,
+        typer.Option(
+            "--default",
+            "-root",
+            help="Set PrimAITE to output system logs and pcap logs to the PrimAITE repository root.",
+        ),
+    ] = None,
+):
+    """Set the output directory for the PrimAITE system and PCAP logs."""
+    if default:
+        PRIMAITE_CONFIG["developer_mode"]["output_dir"] = None
+        # update application config
+        update_primaite_application_config()
+        print(
+            f"PrimAITE dev-mode output_dir [cyan]"
+            f"{str(_PRIMAITE_ROOT.parent.parent / 'simulation_output')}"
+            f"[/cyan]"
+        )
+        return
+
+    if directory:
+        PRIMAITE_CONFIG["developer_mode"]["output_dir"] = directory
+        # update application config
+        update_primaite_application_config()
+        print(f"PrimAITE dev-mode output_dir [cyan]{directory}[/cyan]")

src/primaite/utils/cli/primaite_config_utils.py

@@ -0,0 +1,22 @@
+from typing import Dict, Optional
+
+import yaml
+
+from primaite import PRIMAITE_CONFIG, PRIMAITE_PATHS
+
+
+def is_dev_mode() -> bool:
+    """Returns True if PrimAITE is currently running in developer mode."""
+    return PRIMAITE_CONFIG.get("developer_mode", {}).get("enabled", False)
+
+
+def update_primaite_application_config(config: Optional[Dict] = None) -> None:
+    """
+    Update the PrimAITE application config file.
+
+    :params: config: Leave empty so that PRIMAITE_CONFIG is used - otherwise provide the Dict
+    """
+    with open(PRIMAITE_PATHS.app_config_file_path, "w") as file:
+        if not config:
+            config = PRIMAITE_CONFIG
+        yaml.dump(config, file)

src/primaite/utils/primaite_config_utils.py

@@ -1,11 +0,0 @@
-import yaml
-
-from primaite import PRIMAITE_PATHS
-
-
-def is_dev_mode() -> bool:
-    """Returns True if PrimAITE is currently running in developer mode."""
-    if PRIMAITE_PATHS.app_config_file_path.exists():
-        with open(PRIMAITE_PATHS.app_config_file_path, "r") as file:
-            primaite_config = yaml.safe_load(file)
-            return primaite_config["developer_mode"]

tests/assets/configs/wireless_wan_network_config.yaml

@@ -0,0 +1,77 @@
+game:
+  max_episode_length: 256
+  ports:
+    - ARP
+  protocols:
+    - ICMP
+    - TCP
+    - UDP
+
+simulation:
+  network:
+    nodes:
+      - type: computer
+        hostname: pc_a
+        ip_address: 192.168.0.2
+        subnet_mask: 255.255.255.0
+        default_gateway: 192.168.0.1
+        start_up_duration: 0
+
+      - type: computer
+        hostname: pc_b
+        ip_address: 192.168.2.2
+        subnet_mask: 255.255.255.0
+        default_gateway: 192.168.2.1
+        start_up_duration: 0
+
+      - type: wireless_router
+        hostname: router_1
+        start_up_duration: 0
+
+        router_interface:
+          ip_address: 192.168.0.1
+          subnet_mask: 255.255.255.0
+
+        wireless_access_point:
+          ip_address: 192.168.1.1
+          subnet_mask: 255.255.255.0
+          frequency: WIFI_2_4
+        acl:
+          1:
+            action: PERMIT
+        routes:
+          - address: 192.168.2.0 # PC B subnet
+            subnet_mask: 255.255.255.0
+            next_hop_ip_address: 192.168.1.2
+            metric: 0
+
+      - type: wireless_router
+        hostname: router_2
+        start_up_duration: 0
+
+        router_interface:
+          ip_address: 192.168.2.1
+          subnet_mask: 255.255.255.0
+
+        wireless_access_point:
+          ip_address: 192.168.1.2
+          subnet_mask: 255.255.255.0
+          frequency: WIFI_2_4
+        acl:
+          1:
+            action: PERMIT
+        routes:
+          - address: 192.168.0.0 # PC A subnet
+            subnet_mask: 255.255.255.0
+            next_hop_ip_address: 192.168.1.1
+            metric: 0
+    links:
+      - endpoint_a_hostname: pc_a
+        endpoint_a_port: 1
+        endpoint_b_hostname: router_1
+        endpoint_b_port: 2
+
+      - endpoint_a_hostname: pc_b
+        endpoint_a_port: 1
+        endpoint_b_hostname: router_2
+        endpoint_b_port: 2

tests/conftest.py

@@ -1,19 +1,14 @@
 # © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
-from datetime import datetime
-from pathlib import Path
-from typing import Any, Dict, Optional, Tuple, Union
+from typing import Any, Dict, Tuple
 
 import pytest
-import yaml
-from _pytest.monkeypatch import MonkeyPatch
 
-from primaite import getLogger, PRIMAITE_PATHS
+from primaite import getLogger
 from primaite.game.agent.actions import ActionManager
 from primaite.game.agent.interface import AbstractAgent
 from primaite.game.agent.observations.observation_manager import NestedObservation, ObservationManager
 from primaite.game.agent.rewards import RewardFunction
 from primaite.game.game import PrimaiteGame
-from primaite.simulator import SIM_OUTPUT
 from primaite.simulator.file_system.file_system import FileSystem
 from primaite.simulator.network.container import Network
 from primaite.simulator.network.hardware.nodes.host.computer import Computer
@@ -32,7 +27,6 @@ from primaite.simulator.system.services.dns.dns_server import DNSServer
 from primaite.simulator.system.services.service import Service
 from primaite.simulator.system.services.web_server.web_server import WebServer
 from tests import TEST_ASSETS_ROOT
-from tests.mock_and_patch.get_session_path_mock import temp_user_sessions_path
 
 ACTION_SPACE_NODE_VALUES = 1
 ACTION_SPACE_NODE_ACTION_VALUES = 1
@@ -40,21 +34,6 @@ ACTION_SPACE_NODE_ACTION_VALUES = 1
 _LOGGER = getLogger(__name__)
 
 
-@pytest.fixture(scope="function", autouse=True)
-def set_syslog_output_to_true():
-    """Will be run before each test."""
-    monkeypatch = MonkeyPatch()
-    monkeypatch.setattr(
-        SIM_OUTPUT,
-        "path",
-        Path(TEST_ASSETS_ROOT.parent.parent / "simulation_output" / datetime.now().strftime("%Y-%m-%d_%H-%M-%S")),
-    )
-    monkeypatch.setattr(SIM_OUTPUT, "save_pcap_logs", False)
-    monkeypatch.setattr(SIM_OUTPUT, "save_sys_logs", False)
-
-    yield
-
-
 class TestService(Service):
     """Test Service class"""
 

tests/e2e_integration_tests/environments/test_rllib_single_agent_environment.py

@@ -38,3 +38,5 @@ def test_rllib_single_agent_compatibility():
     save_file = Path(tempfile.gettempdir()) / "ray/"
     algo.save(save_file)
     assert save_file.exists()
+
+    save_file.unlink()  # clean up

tests/e2e_integration_tests/environments/test_sb3_environment.py

@@ -25,3 +25,4 @@ def test_sb3_compatibility():
     model.save(save_path)
 
     assert (save_path).exists()
+    save_path.unlink()  # clean up

tests/integration_tests/cli/__init__.py

@@ -0,0 +1,11 @@
+from typing import List
+
+from typer.testing import CliRunner, Result
+
+from primaite.cli import app
+
+
+def cli(args: List[str]) -> Result:
+    """Pass in a list of arguments and it will return the result."""
+    runner = CliRunner()
+    return runner.invoke(app, args)

tests/integration_tests/cli/test_dev_cli.py

@@ -0,0 +1,171 @@
+import os
+import shutil
+import tempfile
+from pathlib import Path
+
+import pkg_resources
+import pytest
+import yaml
+
+from primaite import PRIMAITE_CONFIG
+from primaite.utils.cli.primaite_config_utils import update_primaite_application_config
+from tests.integration_tests.cli import cli
+
+
+@pytest.fixture(autouse=True)
+def test_setup():
+    """
+    Setup this test by using the default primaite app config in package
+    """
+    global PRIMAITE_CONFIG
+    current_config = PRIMAITE_CONFIG.copy()  # store the config before test
+
+    pkg_config_path = Path(pkg_resources.resource_filename("primaite", "setup/_package_data/primaite_config.yaml"))
+
+    with open(pkg_config_path, "r") as file:
+        # load from config
+        config_dict = yaml.safe_load(file)
+
+    PRIMAITE_CONFIG["developer_mode"] = config_dict["developer_mode"]
+
+    yield
+
+    PRIMAITE_CONFIG["developer_mode"] = current_config["developer_mode"]  # restore config to prevent being yelled at
+    update_primaite_application_config(config=PRIMAITE_CONFIG)
+
+
+def test_dev_mode_enable_disable():
+    """Test dev mode enable and disable."""
+    # check defaults
+    assert PRIMAITE_CONFIG["developer_mode"]["enabled"] is False  # not enabled by default
+
+    result = cli(["dev-mode", "show"])
+    assert "Production" in result.output  # should print that it is in Production mode by default
+
+    result = cli(["dev-mode", "enable"])
+
+    assert "Development" in result.output  # should print that it is in Development mode
+
+    assert PRIMAITE_CONFIG["developer_mode"]["enabled"]  # config should reflect that dev mode is enabled
+
+    result = cli(["dev-mode", "show"])
+    assert "Development" in result.output  # should print that it is in Development mode
+
+    result = cli(["dev-mode", "disable"])
+
+    assert "Production" in result.output  # should print that it is in Production mode
+
+    assert PRIMAITE_CONFIG["developer_mode"]["enabled"] is False  # config should reflect that dev mode is disabled
+
+    result = cli(["dev-mode", "show"])
+    assert "Production" in result.output  # should print that it is in Production mode
+
+
+def test_dev_mode_config_sys_log_level():
+    """Check that the system log level can be changed via CLI."""
+    # check defaults
+    assert PRIMAITE_CONFIG["developer_mode"]["sys_log_level"] == "DEBUG"  # DEBUG by default
+
+    result = cli(["dev-mode", "config", "-level", "WARNING"])
+
+    assert "sys_log_level=WARNING" in result.output  # should print correct value
+
+    # config should reflect that log level is WARNING
+    assert PRIMAITE_CONFIG["developer_mode"]["sys_log_level"] == "WARNING"
+
+    result = cli(["dev-mode", "config", "--sys-log-level", "INFO"])
+
+    assert "sys_log_level=INFO" in result.output  # should print correct value
+
+    # config should reflect that log level is WARNING
+    assert PRIMAITE_CONFIG["developer_mode"]["sys_log_level"] == "INFO"
+
+
+def test_dev_mode_config_sys_logs_enable_disable():
+    """Test that the system logs output can be enabled or disabled."""
+    # check defaults
+    assert PRIMAITE_CONFIG["developer_mode"]["output_sys_logs"] is False  # False by default
+
+    result = cli(["dev-mode", "config", "--output-sys-logs"])
+    assert "output_sys_logs=True" in result.output  # should print correct value
+
+    # config should reflect that output_sys_logs is True
+    assert PRIMAITE_CONFIG["developer_mode"]["output_sys_logs"]
+
+    result = cli(["dev-mode", "config", "--no-sys-logs"])
+    assert "output_sys_logs=False" in result.output  # should print correct value
+
+    # config should reflect that output_sys_logs is True
+    assert PRIMAITE_CONFIG["developer_mode"]["output_sys_logs"] is False
+
+    result = cli(["dev-mode", "config", "-sys"])
+    assert "output_sys_logs=True" in result.output  # should print correct value
+
+    # config should reflect that output_sys_logs is True
+    assert PRIMAITE_CONFIG["developer_mode"]["output_sys_logs"]
+
+    result = cli(["dev-mode", "config", "-nsys"])
+    assert "output_sys_logs=False" in result.output  # should print correct value
+
+    # config should reflect that output_sys_logs is True
+    assert PRIMAITE_CONFIG["developer_mode"]["output_sys_logs"] is False
+
+
+def test_dev_mode_config_pcap_logs_enable_disable():
+    """Test that the pcap logs output can be enabled or disabled."""
+    # check defaults
+    assert PRIMAITE_CONFIG["developer_mode"]["output_pcap_logs"] is False  # False by default
+
+    result = cli(["dev-mode", "config", "--output-pcap-logs"])
+    assert "output_pcap_logs=True" in result.output  # should print correct value
+
+    # config should reflect that output_pcap_logs is True
+    assert PRIMAITE_CONFIG["developer_mode"]["output_pcap_logs"]
+
+    result = cli(["dev-mode", "config", "--no-pcap-logs"])
+    assert "output_pcap_logs=False" in result.output  # should print correct value
+
+    # config should reflect that output_pcap_logs is True
+    assert PRIMAITE_CONFIG["developer_mode"]["output_pcap_logs"] is False
+
+    result = cli(["dev-mode", "config", "-pcap"])
+    assert "output_pcap_logs=True" in result.output  # should print correct value
+
+    # config should reflect that output_pcap_logs is True
+    assert PRIMAITE_CONFIG["developer_mode"]["output_pcap_logs"]
+
+    result = cli(["dev-mode", "config", "-npcap"])
+    assert "output_pcap_logs=False" in result.output  # should print correct value
+
+    # config should reflect that output_pcap_logs is True
+    assert PRIMAITE_CONFIG["developer_mode"]["output_pcap_logs"] is False
+
+
+def test_dev_mode_config_output_to_terminal_enable_disable():
+    """Test that the output to terminal can be enabled or disabled."""
+    # check defaults
+    assert PRIMAITE_CONFIG["developer_mode"]["output_to_terminal"] is False  # False by default
+
+    result = cli(["dev-mode", "config", "--output-to-terminal"])
+    assert "output_to_terminal=True" in result.output  # should print correct value
+
+    # config should reflect that output_to_terminal is True
+    assert PRIMAITE_CONFIG["developer_mode"]["output_to_terminal"]
+
+    result = cli(["dev-mode", "config", "--no-terminal"])
+    assert "output_to_terminal=False" in result.output  # should print correct value
+
+    # config should reflect that output_to_terminal is True
+    assert PRIMAITE_CONFIG["developer_mode"]["output_to_terminal"] is False
+
+    result = cli(["dev-mode", "config", "-t"])
+    assert "output_to_terminal=True" in result.output  # should print correct value
+
+    # config should reflect that output_to_terminal is True
+    assert PRIMAITE_CONFIG["developer_mode"]["output_to_terminal"]
+
+    result = cli(["dev-mode", "config", "-nt"])
+    assert "output_to_terminal=False" in result.output  # should print correct value
+
+    # config should reflect that output_to_terminal is True
+    assert PRIMAITE_CONFIG["developer_mode"]["output_to_terminal"] is False

tests/integration_tests/network/test_multi_lan_internet_example_network.py

@@ -0,0 +1,199 @@
+from primaite.simulator.network.hardware.nodes.host.computer import Computer
+from primaite.simulator.network.hardware.nodes.host.server import Server
+from primaite.simulator.network.networks import multi_lan_internet_network_example
+from primaite.simulator.system.applications.database_client import DatabaseClient
+from primaite.simulator.system.services.dns.dns_client import DNSClient
+from primaite.simulator.system.services.ftp.ftp_client import FTPClient
+from src.primaite.simulator.system.applications.web_browser import WebBrowser
+
+
+def test_all_with_configured_dns_server_ip_can_resolve_url():
+    network = multi_lan_internet_network_example()
+
+    for node in network.nodes.values():
+        dns_client: DNSClient = node.software_manager.software.get("DNSClient")
+
+        if not dns_client:
+            continue
+
+        if dns_client.dns_server:
+            assert dns_client.check_domain_exists("sometech.ai")
+
+
+def test_external_pcs_can_access_sometech_website():
+    network = multi_lan_internet_network_example()
+
+    pc_1_browser: WebBrowser = network.get_node_by_hostname("pc_1").software_manager.software["WebBrowser"]
+    pc_2_browser: WebBrowser = network.get_node_by_hostname("pc_2").software_manager.software["WebBrowser"]
+
+    assert pc_1_browser.get_webpage()
+    assert pc_2_browser.get_webpage()
+
+
+def test_external_pcs_cannot_access_sometech_db():
+    network = multi_lan_internet_network_example()
+
+    pc_1_db_client: DatabaseClient = network.get_node_by_hostname("pc_1").software_manager.software["DatabaseClient"]
+    pc_2_db_client: DatabaseClient = network.get_node_by_hostname("pc_2").software_manager.software["DatabaseClient"]
+
+    assert not pc_1_db_client.get_new_connection()
+    assert not pc_2_db_client.get_new_connection()
+
+
+def test_external_pcs_cannot_access_ftp_on_sometech_storage_server():
+    network = multi_lan_internet_network_example()
+
+    some_tech_storage_srv = network.get_node_by_hostname("some_tech_storage_srv")
+    some_tech_storage_srv.file_system.create_file(file_name="test.png")
+
+    pc_1_ftp_client: FTPClient = network.get_node_by_hostname("pc_1").software_manager.software["FTPClient"]
+    pc_2_ftp_client: FTPClient = network.get_node_by_hostname("pc_2").software_manager.software["FTPClient"]
+
+    assert not pc_1_ftp_client.request_file(
+        dest_ip_address=some_tech_storage_srv.network_interface[1].ip_address,
+        src_folder_name="root",
+        src_file_name="test.png",
+        dest_folder_name="root",
+        dest_file_name="test.png",
+    )
+
+    assert not pc_2_ftp_client.request_file(
+        dest_ip_address=some_tech_storage_srv.network_interface[1].ip_address,
+        src_folder_name="root",
+        src_file_name="test.png",
+        dest_folder_name="root",
+        dest_file_name="test.png",
+    )
+
+
+def test_sometech_webserver_can_access_sometech_db_server():
+    network = multi_lan_internet_network_example()
+
+    web_db_client: DatabaseClient = network.get_node_by_hostname("some_tech_web_srv").software_manager.software[
+        "DatabaseClient"
+    ]
+
+    assert web_db_client.get_new_connection()
+
+
+def test_sometech_webserver_cannot_access_ftp_on_sometech_storage_server():
+    network = multi_lan_internet_network_example()
+
+    some_tech_storage_srv = network.get_node_by_hostname("some_tech_storage_srv")
+    some_tech_storage_srv.file_system.create_file(file_name="test.png")
+
+    web_server: Server = network.get_node_by_hostname("some_tech_web_srv")
+
+    web_ftp_client: FTPClient = web_server.software_manager.software["FTPClient"]
+
+    assert not web_ftp_client.request_file(
+        dest_ip_address=some_tech_storage_srv.network_interface[1].ip_address,
+        src_folder_name="root",
+        src_file_name="test.png",
+        dest_folder_name="root",
+        dest_file_name="test.png",
+    )
+
+
+def test_sometech_dev_pcs_can_access_sometech_website():
+    network = multi_lan_internet_network_example()
+
+    some_tech_snr_dev_pc: Computer = network.get_node_by_hostname("some_tech_snr_dev_pc")
+
+    snr_dev_browser: WebBrowser = some_tech_snr_dev_pc.software_manager.software["WebBrowser"]
+
+    assert snr_dev_browser.get_webpage()
+
+    some_tech_jnr_dev_pc: Computer = network.get_node_by_hostname("some_tech_jnr_dev_pc")
+
+    jnr_dev_browser: WebBrowser = some_tech_jnr_dev_pc.software_manager.software["WebBrowser"]
+
+    assert jnr_dev_browser.get_webpage()
+
+
+def test_sometech_dev_pcs_can_connect_to_sometech_db_server():
+    network = multi_lan_internet_network_example()
+
+    some_tech_snr_dev_pc: Computer = network.get_node_by_hostname("some_tech_snr_dev_pc")
+    snr_dev_db_client: DatabaseClient = some_tech_snr_dev_pc.software_manager.software["DatabaseClient"]
+
+    assert snr_dev_db_client.get_new_connection()
+
+    some_tech_jnr_dev_pc: Computer = network.get_node_by_hostname("some_tech_jnr_dev_pc")
+    jnr_dev_db_client: DatabaseClient = some_tech_jnr_dev_pc.software_manager.software["DatabaseClient"]
+
+    assert jnr_dev_db_client.get_new_connection()
+
+
+def test_sometech_snr_dev_can_access_ftp_on_sometech_storage_server():
+    network = multi_lan_internet_network_example()
+
+    some_tech_storage_srv = network.get_node_by_hostname("some_tech_storage_srv")
+    some_tech_storage_srv.file_system.create_file(file_name="test.png")
+
+    some_tech_snr_dev_pc: Computer = network.get_node_by_hostname("some_tech_snr_dev_pc")
+    snr_dev_ftp_client: FTPClient = some_tech_snr_dev_pc.software_manager.software["FTPClient"]
+
+    assert snr_dev_ftp_client.request_file(
+        dest_ip_address=some_tech_storage_srv.network_interface[1].ip_address,
+        src_folder_name="root",
+        src_file_name="test.png",
+        dest_folder_name="root",
+        dest_file_name="test.png",
+    )
+
+
+def test_sometech_jnr_dev_cannot_access_ftp_on_sometech_storage_server():
+    network = multi_lan_internet_network_example()
+
+    some_tech_storage_srv = network.get_node_by_hostname("some_tech_storage_srv")
+    some_tech_storage_srv.file_system.create_file(file_name="test.png")
+
+    some_tech_jnr_dev_pc: Computer = network.get_node_by_hostname("some_tech_jnr_dev_pc")
+    jnr_dev_ftp_client: FTPClient = some_tech_jnr_dev_pc.software_manager.software["FTPClient"]
+
+    assert not jnr_dev_ftp_client.request_file(
+        dest_ip_address=some_tech_storage_srv.network_interface[1].ip_address,
+        src_folder_name="root",
+        src_file_name="test.png",
+        dest_folder_name="root",
+        dest_file_name="test.png",
+    )
+
+
+def test_sometech_hr_pc_can_access_sometech_website():
+    network = multi_lan_internet_network_example()
+
+    some_tech_hr_pc: Computer = network.get_node_by_hostname("some_tech_hr_1")
+
+    hr_browser: WebBrowser = some_tech_hr_pc.software_manager.software["WebBrowser"]
+
+    assert hr_browser.get_webpage()
+
+
+def test_sometech_hr_pc_cannot_access_sometech_db():
+    network = multi_lan_internet_network_example()
+
+    some_tech_hr_pc: Computer = network.get_node_by_hostname("some_tech_hr_1")
+
+    hr_db_client: DatabaseClient = some_tech_hr_pc.software_manager.software["DatabaseClient"]
+
+    assert not hr_db_client.get_new_connection()
+
+
+def test_sometech_hr_pc_cannot_access_ftp_on_sometech_storage_server():
+    network = multi_lan_internet_network_example()
+
+    some_tech_storage_srv = network.get_node_by_hostname("some_tech_storage_srv")
+    some_tech_storage_srv.file_system.create_file(file_name="test.png")
+
+    some_tech_hr_pc: Computer = network.get_node_by_hostname("some_tech_hr_1")
+    hr_ftp_client: FTPClient = some_tech_hr_pc.software_manager.software["FTPClient"]
+
+    assert not hr_ftp_client.request_file(
+        dest_ip_address=some_tech_storage_srv.network_interface[1].ip_address,
+        src_folder_name="root",
+        src_file_name="test.png",
+        dest_folder_name="root",
+        dest_file_name="test.png",
+    )

tests/integration_tests/network/test_wireless_router.py

@@ -1,16 +1,18 @@
 import pytest
+import yaml
 
-from primaite.simulator.network.airspace import AIR_SPACE, AirSpaceFrequency
+from primaite.game.game import PrimaiteGame
 from primaite.simulator.network.container import Network
 from primaite.simulator.network.hardware.nodes.host.computer import Computer
 from primaite.simulator.network.hardware.nodes.network.router import ACLAction
 from primaite.simulator.network.hardware.nodes.network.wireless_router import WirelessRouter
 from primaite.simulator.network.transmission.network_layer import IPProtocol
 from primaite.simulator.network.transmission.transport_layer import Port
+from tests import TEST_ASSETS_ROOT
 
 
 @pytest.fixture(scope="function")
-def setup_network():
+def wireless_wan_network():
     network = Network()
 
     # Configure PC A
@@ -25,7 +27,7 @@ def setup_network():
     network.add_node(pc_a)
 
     # Configure Router 1
-    router_1 = WirelessRouter(hostname="router_1", start_up_duration=0)
+    router_1 = WirelessRouter(hostname="router_1", start_up_duration=0, airspace=network.airspace)
     router_1.power_on()
     network.add_node(router_1)
 
@@ -49,7 +51,7 @@ def setup_network():
     network.add_node(pc_b)
 
     # Configure Router 2
-    router_2 = WirelessRouter(hostname="router_2", start_up_duration=0)
+    router_2 = WirelessRouter(hostname="router_2", start_up_duration=0, airspace=network.airspace)
     router_2.power_on()
     network.add_node(router_2)
 
@@ -63,7 +65,7 @@ def setup_network():
     router_1.configure_wireless_access_point("192.168.1.1", "255.255.255.0")
     router_2.configure_wireless_access_point("192.168.1.2", "255.255.255.0")
 
-    AIR_SPACE.show()
+    network.airspace.show()
 
     router_1.route_table.add_route(
         address="192.168.2.0", subnet_mask="255.255.255.0", next_hop_ip_address="192.168.1.2"
@@ -77,11 +79,35 @@ def setup_network():
     return pc_a, pc_b, router_1, router_2
 
 
-def test_cross_router_connectivity(setup_network):
-    pc_a, pc_b, router_1, router_2 = setup_network
+@pytest.fixture(scope="function")
+def wireless_wan_network_from_config_yaml():
+    config_path = TEST_ASSETS_ROOT / "configs" / "wireless_wan_network_config.yaml"
+
+    with open(config_path, "r") as f:
+        config_dict = yaml.safe_load(f)
+    network = PrimaiteGame.from_config(cfg=config_dict).simulation.network
+
+    network.airspace.show()
+
+    return network
+
+
+def test_cross_wireless_wan_connectivity(wireless_wan_network):
+    pc_a, pc_b, router_1, router_2 = wireless_wan_network
     # Ensure that PCs can ping across routers before any frequency change
     assert pc_a.ping(pc_a.default_gateway), "PC A should ping its default gateway successfully."
     assert pc_b.ping(pc_b.default_gateway), "PC B should ping its default gateway successfully."
 
     assert pc_a.ping(pc_b.network_interface[1].ip_address), "PC A should ping PC B across routers successfully."
     assert pc_b.ping(pc_a.network_interface[1].ip_address), "PC B should ping PC A across routers successfully."
+
+
+def test_cross_wireless_wan_connectivity_from_yaml(wireless_wan_network_from_config_yaml):
+    pc_a = wireless_wan_network_from_config_yaml.get_node_by_hostname("pc_a")
+    pc_b = wireless_wan_network_from_config_yaml.get_node_by_hostname("pc_b")
+
+    assert pc_a.ping(pc_a.default_gateway), "PC A should ping its default gateway successfully."
+    assert pc_b.ping(pc_b.default_gateway), "PC B should ping its default gateway successfully."
+
+    assert pc_a.ping(pc_b.network_interface[1].ip_address), "PC A should ping PC B across routers successfully."
+    assert pc_b.ping(pc_a.network_interface[1].ip_address), "PC B should ping PC A across routers successfully."

tests/unit_tests/_primaite/_simulator/_network/_hardware/nodes/test_wireless_router.py

@@ -1,97 +0,0 @@
-from ipaddress import IPv4Address
-
-from primaite.simulator.network.hardware.nodes.network.router import ACLAction
-from primaite.simulator.network.hardware.nodes.network.wireless_router import WirelessRouter
-from primaite.simulator.network.transmission.network_layer import IPProtocol
-from primaite.simulator.network.transmission.transport_layer import Port
-
-
-def test_wireless_router_from_config():
-    cfg = {
-        "ref": "router_2",
-        "type": "wireless_router",
-        "hostname": "router_2",
-        "router_interface": {
-            "ip_address": "192.168.1.1",
-            "subnet_mask": "255.255.255.0",
-        },
-        "wireless_access_point": {
-            "ip_address": "192.170.1.1",
-            "subnet_mask": "255.255.255.0",
-            "frequency": "WIFI_2_4",
-        },
-        "acl": {
-            0: {
-                "action": "PERMIT",
-                "src_port": "POSTGRES_SERVER",
-                "dst_port": "POSTGRES_SERVER",
-            },
-            1: {
-                "action": "PERMIT",
-                "protocol": "ICMP",
-            },
-            2: {
-                "action": "PERMIT",
-                "src_ip": "100.100.100.1",
-                "dst_ip": "100.100.101.1",
-            },
-            3: {
-                "action": "PERMIT",
-                "src_ip": "100.100.102.0",
-                "dst_ip": "100.100.103.0",
-                "src_wildcard_mask": "0.0.0.255",
-                "dst_wildcard_mask": "0.0.0.255",
-            },
-            20: {
-                "action": "DENY",
-            },
-        },
-    }
-
-    rt = WirelessRouter.from_config(cfg=cfg)
-
-    r0 = rt.acl.acl[0]
-    assert r0.action == ACLAction.PERMIT
-    assert r0.src_port == r0.dst_port == Port.POSTGRES_SERVER
-    assert r0.src_ip_address == r0.dst_ip_address == r0.dst_wildcard_mask == r0.src_wildcard_mask == r0.protocol == None
-
-    r1 = rt.acl.acl[1]
-    assert r1.action == ACLAction.PERMIT
-    assert r1.protocol == IPProtocol.ICMP
-    assert (
-        r1.src_ip_address
-        == r1.dst_ip_address
-        == r1.dst_wildcard_mask
-        == r1.src_wildcard_mask
-        == r1.src_port
-        == r1.dst_port
-        == None
-    )
-
-    r2 = rt.acl.acl[2]
-    assert r2.action == ACLAction.PERMIT
-    assert r2.src_ip_address == IPv4Address("100.100.100.1")
-    assert r2.dst_ip_address == IPv4Address("100.100.101.1")
-    assert r2.src_wildcard_mask == r2.dst_wildcard_mask == None
-    assert r2.src_port == r2.dst_port == r2.protocol == None
-
-    r3 = rt.acl.acl[3]
-    assert r3.action == ACLAction.PERMIT
-    assert r3.src_ip_address == IPv4Address("100.100.102.0")
-    assert r3.dst_ip_address == IPv4Address("100.100.103.0")
-    assert r3.src_wildcard_mask == IPv4Address("0.0.0.255")
-    assert r3.dst_wildcard_mask == IPv4Address("0.0.0.255")
-    assert r3.src_port == r3.dst_port == r3.protocol == None
-
-    r20 = rt.acl.acl[20]
-    assert r20.action == ACLAction.DENY
-    assert (
-        r20.src_ip_address
-        == r20.dst_ip_address
-        == r20.src_wildcard_mask
-        == r20.dst_wildcard_mask
-        == r20.src_port
-        == r20.dst_port
-        == r20.protocol
-        == None
-    )

tests/unit_tests/_primaite/_simulator/_system/core/test_sys_log.py

@@ -2,10 +2,20 @@ from uuid import uuid4
 
 import pytest
 
+from primaite import PRIMAITE_CONFIG
 from primaite.simulator import LogLevel, SIM_OUTPUT
 from primaite.simulator.system.core.sys_log import SysLog
 
 
+@pytest.fixture(autouse=True)
+def override_dev_mode_temporarily():
+    """Temporarily turn off dev mode for this test."""
+    primaite_dev_mode = PRIMAITE_CONFIG["developer_mode"]["enabled"]
+    PRIMAITE_CONFIG["developer_mode"]["enabled"] = False
+    yield  # run tests
+    PRIMAITE_CONFIG["developer_mode"]["enabled"] = primaite_dev_mode
+
+
 @pytest.fixture(scope="function")
 def syslog() -> SysLog:
     return SysLog(hostname="test")