CSrSSKJr SSKJr SSKJr SSKJr SSKJ r SSKJ r SSK J r SSKJ r SSKJr SSKJr SS KJr SS Kr"S S \R.5r"S S\R.5r"SS\R.5r"SS\R.5rSrSrSrSr"SS\ 5r!Sr"Sr#Sr$Sr%Sr&Sr'Sr(S r)g )!z4Code that's shared between multiple NAT subcommands.)absolute_import)division)unicode_literals) exceptions)flags)scope)yaml)filesNc,^\rSrSrSrU4SjrSrU=r$)NatNotFoundError zRaised when a NAT is not found.cZ>XlSRU5n[[U]U5 g)NzNAT `{0}` not found)nameformatsuperr __init__)selfrmsg __class__s Alib/googlecloudsdk/command_lib/compute/routers/nats/nats_utils.pyrNatNotFoundError.__init__#s(I  & &t ,C D*3/)r__name__ __module__ __qualname____firstlineno____doc__r__static_attributes__ __classcell__rs@rr r s'00rr c,^\rSrSrSrU4SjrSrU=r$))IpAllocateOptionShouldNotBeSpecifiedError)z>Raised when IP Allocation option is specified for private NAT.c0>Sn[[U] U5 g)Nz`--nat-external-ip-pool and --auto-allocate-nat-external-ips cannot be specified for Private NAT.)rr#rrrrs rr2IpAllocateOptionShouldNotBeSpecifiedError.__init__,s 2C 3TCCHrrr!s@rr#r#)sFIIrr#c,^\rSrSrSrU4SjrSrU=r$)IpAllocationUnspecifiedError2zARaised when IP Allocation option is not specified for public NAT.c0>Sn[[U] U5 g)NzcEither --nat-external-ip-pool or --auto-allocate-nat-external-ips must be specified for Public NAT.)rr*rr&s rr%IpAllocationUnspecifiedError.__init__5s /C &6s;rr(rr!s@rr*r*2sI<Sn[[U] U5 g)NzAt least one of: --nat-all-subnet-ip-ranges, --nat-primary-subnet-ip-ranges, --nat-custom-subnet-ip-ranges, --nat64-all-v6-subnet-ip-ranges, --nat64-custom-v6-subnet-ip-ranges should be specified.)rr/rr&s rr6SubnetOptionOrSubnet64OptionShouldBeSpecified.__init__>s   7GLrr(rr!s@rr/r/;sAMMrr/cdURHnXR:XdMUs $ [U5e)z8Returns the nat with the given name in the given router.)natsrr )routernat_namenats rFindNatOrRaiser8Hs, [[c88 j ""rcSUR0n[XU5 URb<URRR R UR5US'URS:HnUR=(d URnU(aU(a [5eO&U(d [5e[X5upVXRS'XbS'URb<URRR RUR5US'URbMURVs/sH2nURRR RU5PM4 snUS'UR US'UR"US 'UR$US 'UR&US 'UR(US 'UR*US 'UR,US'UR.US'UR0c UR2baURRR55nUR0UlUR2bR2U5UlXS'UR<bUR<US'UR>(a[AUR>U5US'URRR "S0UD6$s snf)z3Creates a NAT message from the specified arguments.rtypePRIVATEnatIpAllocateOptionnatIpsautoNetworkTier endpointTypesudpIdleTimeoutSecicmpIdleTimeoutSectcpEstablishedIdleTimeoutSectcpTransitoryIdleTimeoutSectcpTimeWaitTimeoutSec minPortsPerVm maxPortsPerVmenableDynamicPortAllocation logConfig enableEndpointIndependentMappingrulesr()!r_AddSubnetOptionsToParamsr:clientmessages RouterNatTypeValueValuesEnumauto_allocate_nat_external_ipsnat_external_ip_poolr#r*_ParseNatIpFieldsauto_network_tierAutoNetworkTierValueValuesEnumendpoint_types%EndpointTypesValueListEntryValuesEnumudp_idle_timeouticmp_idle_timeouttcp_established_idle_timeouttcp_transitory_idle_timeouttcp_time_wait_timeoutmin_ports_per_vmmax_ports_per_vmenable_dynamic_port_allocationenable_logging log_filterRouterNatLogConfigenable_TranslateLogFilterfilter#enable_endpoint_independent_mappingrJ_ParseRulesFromYamlFile) argscompute_holderparams is_privateis_ip_allocation_specifiedoptionnat_ips endpoint_type log_configs rCreateNatMessagerpPs DII &D&9 YY&&00DDTYYO 6NyyI%* ))FT-F-F! 5 77" & ( **'=OF$* !8 '&&00OO  " " $  $ "00 1M &&00VV  1 F?!% 5 5& !%!7!7& +/+L+L& '(*.*J*J& &'$($>$>& ! 11& 11&*.*M*M& &' $(C&&//BBDJ++J "-doo~Nj$; --9 00 -. ZZ-djj.IF7O    ' ' 1 1 ;F ;;As59Kc[X5up4[X5upVU(dU(d [5eU(aX2S'U(aXBS'U(aXRS'U(aXbS'gg)z'Adds subnet options to the params dict.sourceSubnetworkIpRangesToNat subnetworkssourceSubnetworkIpRangesToNat64nat64SubnetworksN)_ParseIpv4SubnetFields_ParseIpv6SubnetFieldsr/)rgrhrisource_ipv4_subnets_to_nat ipv4_subnetssource_ipv6_subnets_to_nat ipv6_subnetss rrKrKsl-C .*.D .* $,F 7 99.H *+(=0J ,-!- rc UR[RR[RR4;dUR (a[ X5up4X0lX@lUR[RRLdUR(a[X5up4X0lX@lUR (aSUl/UlUR"(aSUl/UlUR$(a[R&R)XR*5nUVs/sHn[,R."U5PM snUlUR2(d4UR4Vs/sHn[7XV5(aMUPM snUlUR8(a/UlUR:(dUR2(a[=X5upxXplXlUR@b>URBRDRFRIUR@5Ul%URLbURLUl'OURP(aSUl'URRbURRUl*OURV(aSUl*URXbURXUl-OUR\(aSUl-UR^bUR^Ul0OURb(aSUl0URdbURdUl3OURh(aSUl3URjbURjUl6OURn(aSUl6URpbURpUl9OURt(aSUl9URvbURvUl<URzc UR|b<UR~=(d$ URBRDR5Ul?URzbURzUR~lAUR|b%[UR|U5UR~lCURbURUlEUR(aRU5UlFU$s snfs snf)z3Updates a NAT message with the specified arguments.N)H subnet_option nat_flags SubnetOption ALL_RANGESPRIMARY_RANGESnat_custom_subnet_ip_ranges_ParseSubnetFieldsrrrssubnet_ipv6_optionSubnetIpv6OptionALL_IPV6_SUBNETS nat64_custom_v6_subnet_ip_rangesrwrtruclear_nat_subnet_ip_rangesclear_nat64_subnet_ip_rangesnat_external_drain_ip_poolDRAIN_NAT_IP_ADDRESSES_ARGResolveAsResource resourcessix text_type drainNatIpsrQr= _ContainIp clear_nat_external_drain_ip_poolrPrRr<rSrLrMrNrTr>rWr@clear_udp_idle_timeoutrXrAclear_icmp_idle_timeoutrYrB"clear_tcp_established_idle_timeoutrZrC!clear_tcp_transitory_idle_timeoutr[rDclear_tcp_time_wait_timeoutr\rEclear_min_ports_per_vmr]rFclear_max_ports_per_vmr^rGr_r`rHrarbrcrdrerIrJrf) r7rgrh ranges_to_natrs drain_nat_ipsiprlrms rUpdateNatMessagers   + +  / /   ) )!3D!IM(5%!O !;!;!L!LL . .!7!MM*7'& $$(,C%CO &&*.C'C $$88JJ &&(M3@A=Rs}}R(=ACO  $ $zz!M)F"zcj **CO ((D,E,E'=OF$J '&&00OO  " " $ & 11C "" C '!33C ##!C &&2'+'H'HC$ ..'+C$ %%1&*&F&FC# --&*C# + $ : :C '' $C &--C ""C &--C ""C ((4&*&I&IC# $(C L..77JJLM $..CMM __ .tOCMM --9 00( ZZ' NCCI *UBs: S S%S%c\rSrSrSrSrSrg) SubnetUsageizDHelper object to store what ranges of a subnetwork are used for NAT.c>SUlSUl[5Ulg)NF) using_primary using_alllistsecondary_ranges)rs rrSubnetUsage.__init__sDDN FDr)rrrN)rrrrrrrr(rrrrs L#rrc  [5nURRnUR[R R :Xa"URRRnGOUR[R R:Xa"URRRnGONURRRn[5nURHnURS5nSnUS:a[ R""SS5eUS:XaUR%S5upOUn X;a ['5XY'Ub0US:Xa SXYlMtXYR*R-U5 MSXYlM UGHqn [0R2"5R5U /[6R8R:UR<UR>[@RB"UR5S9n XYn /n U R((a/U R-URDRFRH5 U R.(a/U R-URDRFRJ5 U R*(a/U R-URDRFRL5 UR-[NRP"U S 5U U R*S .5 GMt U[SUS S 94$) z3Parses arguments related to subnets to use for NAT.:Nz--nat-custom-subnet-ip-rangeszMEach specified subnet must be of the form SUBNETWORK or SUBNETWORK:RANGE_NAMEALLT scope_listerr)rsourceIpRangesToNatsecondaryIpRangeNamesc US$Nrr(subnets r$_ParseSubnetFields..hsvrkey)*rrLrMr}r~rrrN,SourceSubnetworkIpRangesToNatValueValuesEnumALL_SUBNETWORKS_ALL_IP_RANGESr%ALL_SUBNETWORKS_ALL_PRIMARY_IP_RANGESLIST_OF_SUBNETWORKSdictrcountcalliope_exceptionsInvalidArgumentExceptionsplitrrrappendr subnet_flagsSubnetworkResolverResolveResources compute_scope ScopeEnumREGIONregionr compute_flagsGetDefaultScopeListerRouterNatSubnetworkToNat+SourceIpRangesToNatValueListEntryValuesEnum ALL_IP_RANGESPRIMARY_IP_RANGELIST_OF_SECONDARY_IP_RANGESrrsorted) rgrhrsrMr subnet_usagescustom_subnet_argcolons range_option subnet_name subnet_ref subnet_usageoptionss rrrs+  " " + +( 911<<<GG & & Y33BBBGG . . GG   FM!== &&s+fl !!:: +(* * Q;$5$;$;C$@! \'  )%0] "  ! 5 15- $ .  $ 5 5 < <\ J37 "0->0% 224EE -  ! ! ( ( ++  " "$::##% F&j#/lg     - - 8 8 H  # #  - - 8 89I9I K  & &x88CC33 5-- 1 .!(#/#@#@ 3%>  1NO PPrcUR[RRLaUR(dS/4$[ X5$)z8Parses arguments related to ipv4 subnets to use for NAT.N)r}r~r CUSTOM_RANGESrr)rgrhs rrvrvks; I22@@@.. 8O D 11rc UR[RRLaUR(dS/4$/nUR R nUR[RRLa"URRR/4$URHn[R"5RU/[RR UR"UR$[&R("UR 5S9nUR+S[,R."US505 M URRR0[3USS94$)z8Parses arguments related to ipv6 subnets to use for NAT.Nrrrc US$rr(rs rr(_ParseIpv6SubnetFields..srr)rr~rLIST_OF_IPV6_SUBNETSrrLrMrrN.SourceSubnetworkIpRangesToNat64ValueValuesEnumALL_IPV6_SUBNETWORKSrrrrrrrrrrrrrLIST_OF_IPV6_SUBNETWORKSr)rgrhsubnetsrMrrs rrwrwus7 !;!;!P!PP33 8O '  " " + +(  : : K KKII^^   ::k002CC  &&   "889N9NO DJ NNFCMM*Q-89:;GG`` W78 rcURRnUR(a*URRR [ 54$URRR[RRXR5Vs/sHn[R"U5PM sn4$s snf)N)rLrMrPrN"NatIpAllocateOptionValueValuesEnum AUTO_ONLYr MANUAL_ONLYr~IP_ADDRESSES_ARGrrrr)rgrhrMaddresss rrRrRs  " " + +( ((    A A K K F     ? ? K K//AA ((*N*' mmG*N Ns CcUS:Xa4URRRRR$US:Xa4URRRRR $US:Xa4URRRRR $[R"SS5e)z6Translates the specified log filter to the enum value.rTRANSLATIONS_ONLY ERRORS_ONLYz --log-filterz:--log-filter must be ALL, TRANSLATIONS_ONLY or ERRORS_ONLY) rLrMraFilterValueValuesEnumrrrrr) filter_strrhs rrcrcs5  ! ! * * = = " "33(&&  ! ! * * = = " "#4#46=  ! ! * * = = " ";;0 44( **rcBUHnUR5U;dM g g)z)Returns true if target ip is in the list.TF) RelativeName)ip_list target_iprs rrrs# b I%   rc[R"U5n[R"U5nSU;a[R "SS5eUSVs/sHn[ XA5PM snsSSS5 $s snf!,(df  g=f)z*Parses NAT Rules from the given YAML file.rJz--rulesz0The YAML file must contain the 'rules' attributeN)r FileReaderr loadrr _CreateRule) file_pathrh import_file rules_yaml rule_yamls rrfrfs  "k;'Jj  8 8 I KK$G, ,I I.,  #"   #"s;A8A3'A83A88 BcURRR5nSU;a USUlSU;a USUlSU;aUSnURRR 5UlSU;aUSUR lSU;aUSUR lSU;aUSUR l SU;aUSUR l U$)z1Creates a Rule object from the given parsed YAML. ruleNumbermatchactionsourceNatActiveIpssourceNatDrainIpssourceNatActiveRangessourceNatDrainRanges) rLrM RouterNatRulerrRouterNatRuleActionrrrrr)rrhrule action_yamls rrrs    ' ' 5 5 7$Y -DO 7#DJ H%K ''00DDFDK{*'23G'Hdkk$k)&12E&Fdkk#+-*56M*Ndkk',)45K)Ldkk& +r)*r __future__rrrgooglecloudsdk.callioperr"googlecloudsdk.command_lib.computerrrr3googlecloudsdk.command_lib.compute.networks.subnetsr/googlecloudsdk.command_lib.compute.routers.natsr~googlecloudsdk.corecore_exceptionsr googlecloudsdk.core.utilr rErrorr r#r*r/r8rprKrobjectrrrvrwrRrcrrfrr(rrrs;&'EEEUN=$* 0,,0I0E0EI