#2775 - Purging of more instances where the ARP acl rule is set and no longer necessary. Added a new test to show ARP is unaffected by ACL rules and actioned review comments

2024-09-11 15:12:36 +01:00
parent d5f1d0fda1
commit f95501f2a8
12 changed files with 31 additions and 23 deletions
--- a/src/primaite/simulator/network/creation.py
+++ b/src/primaite/simulator/network/creation.py
@@ -7,7 +7,6 @@ from primaite.simulator.network.hardware.nodes.host.computer import Computer
 from primaite.simulator.network.hardware.nodes.network.router import ACLAction, Router
 from primaite.simulator.network.hardware.nodes.network.switch import Switch
 from primaite.simulator.network.transmission.network_layer import IPProtocol
-from primaite.simulator.network.transmission.transport_layer import Port


 def num_of_switches_required(num_nodes: int, max_network_interface: int = 24) -> int:
@@ -98,7 +97,6 @@ def create_office_lan(
        default_gateway = IPv4Address(f"192.168.{subnet_base}.1")
        router = Router(hostname=f"router_{lan_name}", start_up_duration=0)
        router.power_on()
-        router.acl.add_rule(action=ACLAction.PERMIT, src_port=Port.ARP, dst_port=Port.ARP, position=22)
        router.acl.add_rule(action=ACLAction.PERMIT, protocol=IPProtocol.ICMP, position=23)
        network.add_node(router)
        router.configure_port(port=1, ip_address=default_gateway, subnet_mask="255.255.255.0")
--- a/src/primaite/simulator/network/hardware/nodes/network/router.py
+++ b/src/primaite/simulator/network/hardware/nodes/network/router.py
@@ -1388,6 +1388,9 @@ class Router(NetworkNode):
        if self.operating_state != NodeOperatingState.ON:
            return

+        print("£££££££££££££££££££££££££££££")
+        print(f"Frame received is: {frame}")
+
        if self.subject_to_acl(frame=frame):
            # Check if it's permitted
            permitted, rule = self.acl.is_permitted(frame)
--- a/src/primaite/simulator/network/networks.py
+++ b/src/primaite/simulator/network/networks.py
@@ -79,8 +79,6 @@ def client_server_routed() -> Network:
    server_1.power_on()
    network.connect(endpoint_b=server_1.network_interface[1], endpoint_a=switch_1.network_interface[1])

-    router_1.acl.add_rule(action=ACLAction.PERMIT, src_port=Port.ARP, dst_port=Port.ARP, position=22)
-
    router_1.acl.add_rule(action=ACLAction.PERMIT, protocol=IPProtocol.ICMP, position=23)

    return network
@@ -271,8 +269,6 @@ def arcd_uc2_network() -> Network:
    security_suite.connect_nic(NIC(ip_address="192.168.10.110", subnet_mask="255.255.255.0"))
    network.connect(endpoint_b=security_suite.network_interface[2], endpoint_a=switch_2.network_interface[7])

-    router_1.acl.add_rule(action=ACLAction.PERMIT, src_port=Port.ARP, dst_port=Port.ARP, position=22)
-
    router_1.acl.add_rule(action=ACLAction.PERMIT, protocol=IPProtocol.ICMP, position=23)

    # Allow PostgreSQL requests
--- a/src/primaite/simulator/network/transmission/data_link_layer.py
+++ b/src/primaite/simulator/network/transmission/data_link_layer.py
@@ -161,7 +161,7 @@ class Frame(BaseModel):
        """
        Checks if the Frame is an ARP (Address Resolution Protocol) packet.

-        This is determined by checking if the destination port of the TCP header is equal to the ARP port.
+        This is determined by checking if the destination port of the UDP header is equal to the ARP port.

        :return: True if the Frame is an ARP packet, otherwise False.
        """