use PVE::Firewall;
use PVE::API2::Firewall::Rules;
use PVE::API2::Firewall::Groups;
+use PVE::API2::Firewall::IPSet;
#fixme: locking?
return $res;
}});
+__PACKAGE__->register_method({
+ name => 'ipset',
+ path => 'ipset',
+ method => 'GET',
+ description => "List IPSets",
+ parameters => {
+ additionalProperties => 0,
+ },
+ returns => {
+ type => 'array',
+ items => {
+ type => "object",
+ properties => {
+ name => {
+ description => "IPSet name.",
+ type => 'string',
+ },
+ },
+ },
+ links => [ { rel => 'child', href => "{name}" } ],
+ },
+ code => sub {
+ my ($param) = @_;
+
+ my $cluster_conf = PVE::Firewall::load_clusterfw_conf();
+
+ my $res = [];
+ foreach my $name (keys %{$cluster_conf->{ipset}}) {
+ push @$res, { name => $name, count => scalar(@{$cluster_conf->{ipset}->{$name}}) };
+ }
+
+ return $res;
+ }});
+
+__PACKAGE__->register_method ({
+ subclass => "PVE::API2::Firewall::ClusterIPset",
+ path => 'ipset/{name}',
+ # set fragment delimiter (no subdirs) - we need that, because CIDR address contain a slash '/'
+ fragmentDelimiter => '',
+});
+
1;