lenovo-powervfw_client 0.1.0

data/.document

@@ -0,0 +1,5 @@
+README.rdoc
+lib/**/*.rb
+bin/*
+features/**/*.feature
+LICENSE

data/.gitignore

@@ -0,0 +1,21 @@
+## MAC OS
+.DS_Store
+
+## TEXTMATE
+*.tmproj
+tmtags
+
+## EMACS
+*~
+\#*
+.\#*
+
+## VIM
+*.swp
+
+## PROJECT::GENERAL
+coverage
+rdoc
+pkg
+
+## PROJECT::SPECIFIC

data/LICENSE

@@ -0,0 +1,20 @@
+Copyright (c) 2009 Tower He
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.rdoc

@@ -0,0 +1,25 @@
+= lenovo-powervfw_client
+
+Provide a executable client and a series of APIs of Power V firewall of Lenovo. You can use the client to interact with the
+Power V firewall of Lenove. And you can also program with the APIs provided by this project.
+
+== FEATURES/PROBLEMS:
+
+* [feature] Connect to the Power V firewall throw SSH.
+* [feature] Add packet filter rules whose type is deny.
+
+== SYNOPSIS:
+
+  require 'lenovo-powervfw_client'
+
+  client = Lenovo::PowerVFwClient.new('host', 'user', 'password')
+  client.add_rule('sample', {:sa => 'any', :sport => 'any', :log => 'on'})
+  client.close
+
+== INSTALL:
+
+  sudo gem install lenovo-powervfw_client
+
+== COPYRIGHT:
+
+Copyright (c) 2009 Tower He. See LICENSE for details.

data/Rakefile

@@ -0,0 +1,45 @@
+require 'rubygems'
+require 'rake'
+
+begin
+  require 'jeweler'
+  Jeweler::Tasks.new do |gem|
+    gem.name = "lenovo-powervfw_client"
+    gem.summary = %Q{A client for the Power V firewall of Lenovo}
+    gem.description = %Q{Provide a executable client and a client API of the Power V firewall of Lenovo}
+    gem.email = "towerhe@gmail.com"
+    gem.homepage = "http://github.com/towerhe/lenovo-powervfw_client"
+    gem.authors = ["Tower He"]
+    gem.add_development_dependency "rspec", ">= 1.2.9"
+    # gem is a Gem::Specification... see http://www.rubygems.org/read/chapter/20 for additional settings
+  end
+  Jeweler::GemcutterTasks.new
+rescue LoadError
+  puts "Jeweler (or a dependency) not available. Install it with: gem install jeweler"
+end
+
+require 'spec/rake/spectask'
+Spec::Rake::SpecTask.new(:spec) do |spec|
+  spec.libs << 'lib' << 'spec'
+  spec.spec_files = FileList['spec/**/*_spec.rb']
+end
+
+Spec::Rake::SpecTask.new(:rcov) do |spec|
+  spec.libs << 'lib' << 'spec'
+  spec.pattern = 'spec/**/*_spec.rb'
+  spec.rcov = true
+end
+
+task :spec => :check_dependencies
+
+task :default => :spec
+
+require 'rake/rdoctask'
+Rake::RDocTask.new do |rdoc|
+  version = File.exist?('VERSION') ? File.read('VERSION') : ""
+
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title = "lenovo-powervfw_client #{version}"
+  rdoc.rdoc_files.include('README*')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end

data/VERSION

@@ -0,0 +1 @@
+0.1.0

data/lib/lenovo-powervfw_client.rb

@@ -0,0 +1,61 @@
+require 'rubygems'
+require 'net/ssh'
+
+module Lenovo
+  class PowerVFwClient
+    def initialize(host, user, password)
+      begin
+        @session = Net::SSH.start(host, user, :password => password)
+      rescue
+        puts $!
+      end
+    end
+
+    def closed?
+      @session.nil? or @session.closed?
+    end
+
+    def close
+      @session.close
+    end
+
+    # Add a packet filter rule whose type is deny.
+    #
+    # {
+    #   :name => 'Rule Name',                           # rule name, required.
+    #   :id => 'id',                                    # rule id, must be in 1..65535,  optional, 
+    #                                                   # default value is the last one.
+    #   :sa => 'any' | '<name>' | '<ip>',               # source address, optional, default value is any. 
+    #   :sport => 'any' | '<port>',                     # source port, must be in 1..65535, optional, default value is any.
+    #   :smac => 'any' | '<mac>',                       # source mac address, optional, default value is any.
+    #   :da => 'any' | '<name>' | '<ip>',               # destination address, optional, default value is any.
+    #   :iif => 'any' | '<interface>',                  # input interface, optional, default value is any.
+    #   :oif => 'any' | '<interface>',                  # output interface, optional, default value is any.
+    #   :service => 'any' | '<name>',                   # service name, could be service name or group of services,
+    #                                                   # optional, default value is any.
+    #   :time => '<name>' | 'none',                     # optional, default value is none.
+    #   :log => 'on' | 'off',                           # whether to log, optional, default value is off.
+    #   :active => 'on' | 'off',                        # whether to enable this rule, optional, default value is on.
+    #   :comment => '<comment>'                         # comment of this rule, optional
+    # }
+    def add_rule(name, options = {})
+      type = 'deny'
+      cmd = "rule add type #{type} name #{name} "
+      cmd << "id #{options[:id]} " if options.has_key? :id
+      cmd << "sa #{options[:sa] || 'any'} " if options.has_key? :sa
+      cmd << "sport #{options[:sport] || 'any'} " if options.has_key? :sport
+      cmd << "smac #{options[:smac] || 'any'} " if options.has_key? :smac
+      cmd << "da #{options[:da] || 'any'} " if options.has_key? :da
+      cmd << "iif #{options[:iif] || 'any'} " if options.has_key? :iif
+      cmd << "oif #{options[:oif] || 'any'} " if options.has_key? :oif
+      cmd << "service #{options[:service] || 'any'} " if options.has_key? :service
+      cmd << "time #{options[:time] || 'none'} " if options.has_key? :time
+      cmd << "log #{options[:log] || 'off'} " if options.has_key? :log
+      cmd << "active #{options[:active] || 'on'} " if options.has_key? :active
+      cmd << "comment #{options[:comment]}" if options.has_key? :comment
+
+      output = @session.exec!(cmd.strip)
+      not output.include? 'Error'
+    end
+  end
+end

data/spec/lenovo-powervfw_client_spec.rb

@@ -0,0 +1,54 @@
+require File.expand_path(File.dirname(__FILE__) + '/spec_helper')
+
+describe "LenovoPowervfwClient" do
+  describe "Create SSH connection successfully" do
+    before(:each) do
+      @session = mock(Net::SSH::Connection::Session)
+      Net::SSH.should_receive(:start).with('localhost', 'user', :password => 'password').and_return(@session)
+      @client = Lenovo::PowerVFwClient.new('localhost', 'user', 'password')
+    end
+    it "should successfully establish a connection to the local ssh server " do
+      @session.should_receive(:closed?).and_return(false)
+      @client.closed?.should == false
+    end
+
+    it "should establish a connection, but disconnected" do
+      @session.should_receive(:closed?).and_return(true)
+      @client.closed?.should == true
+    end
+
+    it "should disconnect the connection which linked to the local ssh server" do
+      @session.should_receive(:closed?).and_return(false)
+      @client.closed?.should == false
+
+      @session.should_receive(:close).and_return(true)
+      @session.should_receive(:closed?).and_return(true)
+      @client.close
+      @client.closed?.should == true
+    end
+
+    describe "Create a packet filter" do
+      it "should create a packet filter rule to deny packets" do
+        cmd = 'rule add type deny name test'
+        @session.should_receive(:exec!).with(cmd).and_return("")
+
+        @client.add_rule('test').should == true
+      end
+
+      it "should not create an invalid packet filter" do 
+        cmd = 'rule add type deny name invalid_rule'
+        @session.should_receive(:exec!).with(cmd).and_return("Error")
+
+        @client.add_rule('invalid_rule').should == false
+      end
+    end
+
+  end
+
+  it "should not establish a connection to the local ssh server" do
+    Net::SSH.should_receive(:start).with('localhost', 'user', :password => 'password').and_raise("exception")
+    client = Lenovo::PowerVFwClient.new('localhost', 'user', 'password')
+    client.closed?.should == true
+  end
+
+end

data/spec/spec.opts

@@ -0,0 +1 @@
+--color

data/spec/spec_helper.rb

@@ -0,0 +1,9 @@
+$LOAD_PATH.unshift(File.dirname(__FILE__))
+$LOAD_PATH.unshift(File.join(File.dirname(__FILE__), '..', 'lib'))
+require 'lenovo-powervfw_client'
+require 'spec'
+require 'spec/autorun'
+
+Spec::Runner.configure do |config|
+  
+end

metadata

@@ -0,0 +1,75 @@
+--- !ruby/object:Gem::Specification 
+name: lenovo-powervfw_client
+version: !ruby/object:Gem::Version 
+  version: 0.1.0
+platform: ruby
+authors: 
+- Tower He
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2009-12-29 00:00:00 +08:00
+default_executable: 
+dependencies: 
+- !ruby/object:Gem::Dependency 
+  name: rspec
+  type: :development
+  version_requirement: 
+  version_requirements: !ruby/object:Gem::Requirement 
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        version: 1.2.9
+    version: 
+description: Provide a executable client and a client API of the Power V firewall of Lenovo
+email: towerhe@gmail.com
+executables: []
+
+extensions: []
+
+extra_rdoc_files: 
+- LICENSE
+- README.rdoc
+files: 
+- .document
+- .gitignore
+- LICENSE
+- README.rdoc
+- Rakefile
+- VERSION
+- lib/lenovo-powervfw_client.rb
+- spec/lenovo-powervfw_client_spec.rb
+- spec/spec.opts
+- spec/spec_helper.rb
+has_rdoc: true
+homepage: http://github.com/towerhe/lenovo-powervfw_client
+licenses: []
+
+post_install_message: 
+rdoc_options: 
+- --charset=UTF-8
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      version: "0"
+  version: 
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      version: "0"
+  version: 
+requirements: []
+
+rubyforge_project: 
+rubygems_version: 1.3.5
+signing_key: 
+specification_version: 3
+summary: A client for the Power V firewall of Lenovo
+test_files: 
+- spec/spec_helper.rb
+- spec/lenovo-powervfw_client_spec.rb