{ "$id": "https://liske.github.io/ifstate/schema/ifstate.conf.schema.json", "$schema": "http://json-schema.org/draft-07/schema#", "title": "ifstate.conf", "description": "IfState Configuration Schema", "type": "object", "definitions": { "iface-link_link": { "type": [ "integer", "string" ], "description": "specifies a parent device name or index" }, "iface-link_master": { "type": [ "integer", "string" ], "description": "specifies a master device name or index" }, "iface-link_state": { "type": "string", "description": "set device state", "enum": [ "up", "down" ] }, "iface-link_tun-remote4": { "type": "string", "description": "remote IPv4 address of the tunnel", "format": "ipv4" }, "iface-link_tun-local4": { "type": "string", "description": "local IPv4 address of the tunnel", "format": "ipv4" }, "iface-link_tun-remote6": { "type": "string", "description": "remote IPv4 address of the tunnel", "format": "ipv6" }, "iface-link_tun-local6": { "type": "string", "description": "local IPv4 address of the tunnel", "format": "ipv6" }, "iface-link_tun-dev": { "$ref": "#/definitions/iface-link_link", "description": "interface to use for tunnel endpoint communication" }, "iface-sysctl": { "type": "object", "description": "configures [per interface sysctl settings](https://www.kernel.org/doc/Documentation/networking/ip-sysctl.txt)", "additionalProperties": false, "properties": { "ipv4": { "type": "object", "description": "settings in `/proc/sys/net/ipv4/*/conf/`", "properties": { "accept_local": { "type": "integer" }, "accept_redirects": { "type": "integer" }, "accept_source_route": { "type": "integer" }, "arp_accept": { "type": "integer" }, "arp_announce": { "type": "integer" }, "arp_filter": { "type": "integer" }, "arp_ignore": { "type": "integer" }, "arp_notify": { "type": "integer" }, "bc_forwarding": { "type": "integer" }, "bootp_relay": { "type": "integer" }, "disable_policy": { "type": "integer" }, "disable_xfrm": { "type": "integer" }, "drop_gratuitous_arp": { "type": "integer" }, "drop_unicast_in_l2_multicast": { "type": "integer" }, "force_igmp_version": { "type": "integer" }, "forwarding": { "type": "integer" }, "igmpv2_unsolicited_report_interval": { "type": "integer" }, "igmpv3_unsolicited_report_interval": { "type": "integer" }, "ignore_routes_with_linkdown": { "type": "integer" }, "log_martians": { "type": "integer" }, "mc_forwarding": { "type": "integer" }, "medium_id": { "type": "integer" }, "promote_secondaries": { "type": "integer" }, "proxy_arp": { "type": "integer" }, "proxy_arp_pvlan": { "type": "integer" }, "route_localnet": { "type": "integer" }, "rp_filter": { "type": "integer" }, "secure_redirects": { "type": "integer" }, "send_redirects": { "type": "integer" }, "shared_media": { "type": "integer" }, "src_valid_mark": { "type": "integer" }, "tag": { "type": "integer" } } }, "ipv6": { "type": "object", "description": "settings in `/proc/sys/net/ipv6/*/conf/`", "additionalProperties": false, "properties": { "accept_dad": { "type": "integer" }, "accept_ra": { "type": "integer" }, "accept_ra_defrtr": { "type": "integer" }, "accept_ra_from_local": { "type": "integer" }, "accept_ra_min_hop_limit": { "type": "integer" }, "accept_ra_mtu": { "type": "integer" }, "accept_ra_pinfo": { "type": "integer" }, "accept_ra_rt_info_max_plen": { "type": "integer" }, "accept_ra_rt_info_min_plen": { "type": "integer" }, "accept_ra_rtr_pref": { "type": "integer" }, "accept_redirects": { "type": "integer" }, "accept_source_route": { "type": "integer" }, "addr_gen_mode": { "type": "integer" }, "autoconf": { "type": "integer" }, "dad_transmits": { "type": "integer" }, "disable_ipv6": { "type": "integer" }, "disable_policy": { "type": "integer" }, "drop_unicast_in_l2_multicast": { "type": "integer" }, "drop_unsolicited_na": { "type": "integer" }, "enhanced_dad": { "type": "integer" }, "force_mld_version": { "type": "integer" }, "force_tllao": { "type": "integer" }, "forwarding": { "type": "integer" }, "hop_limit": { "type": "integer" }, "ignore_routes_with_linkdown": { "type": "integer" }, "keep_addr_on_down": { "type": "integer" }, "max_addresses": { "type": "integer" }, "max_desync_factor": { "type": "integer" }, "mc_forwarding": { "type": "integer" }, "mldv1_unsolicited_report_interval": { "type": "integer" }, "mldv2_unsolicited_report_interval": { "type": "integer" }, "mtu": { "type": "integer" }, "ndisc_notify": { "type": "integer" }, "ndisc_tclass": { "type": "integer" }, "optimistic_dad": { "type": "integer" }, "proxy_ndp": { "type": "integer" }, "regen_max_retry": { "type": "integer" }, "router_probe_interval": { "type": "integer" }, "router_solicitation_delay": { "type": "integer" }, "router_solicitation_interval": { "type": "integer" }, "router_solicitation_max_interval": { "type": "integer" }, "router_solicitations": { "type": "integer" }, "seg6_enabled": { "type": "integer" }, "seg6_require_hmac": { "type": "integer" }, "stable_secret": { "type": "string", "format": "ipv6" }, "suppress_frag_ndisc": { "type": "integer" }, "temp_prefered_lft": { "type": "integer" }, "temp_valid_lft": { "type": "integer" }, "use_oif_addrs_only": { "type": "integer" }, "use_optimistic": { "type": "integer" }, "use_tempaddr": { "type": "integer" } } } } }, "iface-ethtool_onoff": { "type": [ "boolean", "string" ], "enum": [ "on", "off", true, false ] }, "iface-tc_qid": { "type": "string", "description": "qdisc id", "format": "^(root|[0-9a-f]+:[0-9a-f]*)$" }, "iface-tc_protocol": { "type": [ "string", "integer" ], "description": "protocol selector", "minLength": 2, "minimum": 0, "maximum": 255, "default": 3 }, "iface-tc_prio": { "type": "integer", "description": "priority", "minimum": 0, "maximum": 65535 }, "iface-tc_qdisc": { "description": "traffic control queueing discipline", "type": "object", "required": [ "handle" ], "properties": { "parent": { "description": "parent where to attach this qdisc", "$ref": "#/definitions/iface-tc_qid" }, "handle": { "description": "unique id", "$ref": "#/definitions/iface-tc_qid" } }, "oneOf": [ { "description": "generic classless qdisc", "required": [ "kind" ], "properties": { "kind": { "type": "string", "description": "qdisk type", "enum": [ "gred", "hhf", "ingress", "mqprio", "multiq", "netem", "pfifo_fast", "pie", "red", "sfb", "sfq", "tbf" ] } } }, { "description": "[cake](https://man7.org/linux/man-pages/man8/tc-cake.8.html) - common applications kept enhanced (CAKE)", "required": [ "kind" ], "properties": { "kind": { "type": "string", "description": "qdisk type", "enum": [ "cake" ] }, "handle": { "description": "unique id", "$ref": "#/definitions/iface-tc_qid" }, "ack_filter": { "description": "ACKnowledge filter", "type": [ "boolean", "string" ], "enum": [ "aggressive", true, false ] }, "atm_mode": { "description": "ATM mode", "type": [ "boolean", "string" ], "enum": [ "ptm", true, false ] }, "autorate": { "type": "boolean", "description": "autorate-ingress" }, "diffserv_mode": { "type": "string", "description": "diffserv mode", "enum": [ "diffserv3", "diffserv4", "diffserv8", "besteffort", "precedence" ] }, "ingress": { "description": "ingress", "type": "boolean" }, "overhead": { "description": "overhead", "type": "integer", "minimum": -64, "maximum": 256 }, "flow_mode": { "description": "flow mode", "type": "string", "enum": [ "flowblind", "srchost", "dsthost", "hosts", "flows", "dual-srchost", "dual-dsthost", "triple-isolated" ] }, "fwmark": { "description": "fwmark", "type": "integer", "minimum": 0 }, "memlimit": { "description": "memlimit", "type": "integer", "minimum": 0 }, "mpu": { "description": "MPU", "type": "integer", "minimum": 0, "maximum": 256 }, "nat": { "description": "NAT", "type": "boolean" }, "raw": { "description": "RAW", "type": "boolean" }, "rtt": { "oneOf": [ { "type": "string", "description": "well-known RTT", "enum": [ "datacentre", "lan", "metro", "regional", "internet", "oceanic", "satellite", "interplanetary" ] }, { "type": "integer", "description": "manually specify an RTT (us)", "minimum": 1 } ] }, "split_gso": { "description": "split GSO", "type": "boolean" }, "target": { "type": "integer", "description": "target", "minimum": 1 }, "wash": { "description": "wash", "type": "boolean" } } }, { "description": "[choke](https://man7.org/linux/man-pages/man8/tc-choke.8.html) - choose and keep scheduler", "required": [ "kind", "limit", "min", "max", "avpkt", "burst", "probability" ], "properties": { "kind": { "type": "string", "description": "qdisk type", "enum": [ "choke" ] } } }, { "description": "[CoDel](https://man7.org/linux/man-pages/man8/tc-codel.8.html) - Controlled-Delay Active Queue Management algorithm", "required": [ "kind" ], "properties": { "kind": { "type": "string", "description": "qdisk type", "enum": [ "codel" ] } } }, { "description": "[bfifo](https://man7.org/linux/man-pages/man8/tc-bfifo.8.html) - Byte limited First In, First Out queue; [pfifo](https://man7.org/linux/man-pages/man8/tc-pfifo.8.html) - Packet limited First In, First Out queue", "required": [ "kind" ], "additionalProperties": false, "properties": { "kind": { "type": "string", "description": "qdisk type", "enum": [ "bfifo", "pfifo" ] }, "limit": { "type": "number", "description": "queue size in bytes or packets" } } }, { "description": "[fq](https://man7.org/linux/man-pages/man8/tc-fq.8.html) - Fair Queue traffic policing", "required": [ "kind" ], "properties": { "kind": { "type": "string", "description": "qdisk type", "enum": [ "fq" ] }, "limit": { "type": "number", "description": "hard limit on the real queue size (number of packets)" }, "flow_limit": { "type": "number", "description": "hard limit on the max number of packets per flow" } } }, { "description": "[fq_codel](https://man7.org/linux/man-pages/man8/tc-fq_codel.8.html) - Fair Queuing (FQ) with Controlled Delay (CoDel)", "required": [ "kind" ], "properties": { "kind": { "type": "string", "description": "qdisk type", "enum": [ "fq_codel" ] }, "limit": { "type": "number", "description": "hard limit on the real queue size (number of packets)" }, "flows": { "type": "number", "description": "number of flows" } } }, { "description": "generic classful qdisc", "required": [ "kind" ], "properties": { "kind": { "type": "string", "description": "qdisk type", "enum": [ "atm", "cbq", "drr", "dsmark", "hfsc", "htb", "prio", "qfq" ] } } }, { "description": "classful multiqueue dummy scheduler", "required": [ "kind", "children" ], "properties": { "kind": { "type": "string", "description": "qdisk type", "enum": [ "mq" ] }, "children": { "description": "list child qdiscs for each device TX queue", "type": "array", "items": { "description": "child qdiscs for the nth device TX queue", "$ref": "#/definitions/iface-tc_qdisc" } } } } ] }, "iface-tc_action": { "description": "traffic control filter action", "type": "array", "items": { "type": "object", "required": [ "kind" ], "properties": { "kind": { "type": "string", "enum": [ "mirred" ] } }, "oneOf": [ { "description": "[mirred](https://man7.org/linux/man-pages/man8/tc-mirred.8.html) - mirror/redirect action", "additionalProperties": false, "required": [ "direction", "action", "dev" ], "properties": { "kind": { "type": "string", "enum": [ "mirred" ] }, "direction": { "description": "packet direction", "type": "string", "enum": [ "ingress", "egress" ] }, "action": { "description": "copy (`mirror`) or move (`redirect`) packets to the destination interface", "type": "string", "enum": [ "mirror", "redirect" ] }, "dev": { "description": "destination interface where packets are redirected or mirrored to", "$ref": "#/definitions/iface-link_link" }, "index": { "description": "unique action ID", "type": "integer", "minimum": 0, "maximum": 4294967295 } } } ] } } }, "additionalProperties": false, "properties": { "options": { "description": "global configuration settings", "type": "object", "additionalProperties": false, "properties": { "sysctl": { "type": "object", "properties": { "all": { "description": "overrides [per interface sysctl settings](https://www.kernel.org/doc/Documentation/networking/ip-sysctl.txt) in `/proc/sys/net/ipv*/conf/all/`", "$ref": "#/definitions/iface-sysctl" }, "default": { "description": "default [per interface sysctl settings](https://www.kernel.org/doc/Documentation/networking/ip-sysctl.txt) in `/proc/sys/net/ipv*/conf/default/`", "$ref": "#/definitions/iface-sysctl" } } } } }, "ignore": { "description": "ignore patterns to skip interface, ip address or routing objects", "type": "object", "additionalProperties": false, "properties": { "ipaddr": { "description": "list of ip address prefixes to be ignored", "type": "array", "items": { "description": "ip address with prefix length", "type": "string", "examples": [ "fe80::/10" ] } }, "ipaddr_dynamic": { "description": "ignore dynamic assigned ip addresses", "type": "boolean", "default": true }, "ifname": { "description": "interface names matching this list of regex will be ignored", "type": "array", "items": { "description": "regex to match interface name", "examples": [ "^docker\\d+", "^lo$", "^ppp\\d+$", "^veth" ], "type": "string" } }, "routes": { "description": "filter routes by options", "type": "array", "items": { "type": "object", "additionalProperties": false, "properties": { "dev": { "type": [ "integer", "string" ] }, "proto": { "type": [ "integer", "string" ], "default": "boot" }, "realm": { "type": [ "integer", "string" ] }, "scope": { "type": [ "integer", "string" ] }, "table": { "type": [ "integer", "string" ], "default": "main" }, "to": { "type": "string" }, "via": { "type": "string" } } } }, "rules": { "description": "filter rules by options", "type": "array", "items": { "type": "object", "additionalProperties": false, "properties": { "action": { "type": [ "integer", "string" ], "description": "the type of this rule", "enum": [ "to_tbl", "blackhole", "unreachable", "prohibit" ], "default": "to_tbl" }, "table": { "type": [ "integer", "string" ], "minimum": 0, "maximum": 255 }, "priority": { "type": "integer", "description": "the priority of this rule", "minimum": 0, "maximum": 4294967295 }, "from": { "type": "string", "description": "select the source prefix to match", "format": "ipv4,ipv6" }, "to": { "type": "string", "description": "select the destination prefix to match", "format": "ipv4,ipv6" }, "iif": { "type": "string", "description": "select the incoming device to match" }, "oif": { "type": "string", "description": "select the outgoing device to match" }, "proto": { "type": [ "integer", "string" ], "default": "unspec", "description": "routing protocol number (`/etc/iproute2/rt_protos`)" }, "fwmark": { "type": "integer", "description": "select the *fwmark* value to match" }, "ipproto": { "type": [ "integer", "string" ], "description": "select the ip protocol to match" } } } } } }, "interfaces": { "description": "list of interface settings (link settings and ip addresses)", "type": "array", "items": { "type": "object", "required": [ "name" ], "additionalProperties": false, "properties": { "name": { "description": "name of the interface", "type": "string" }, "addresses": { "description": "ip addresses of the interface", "type": "array", "items": { "type": "string", "examples": [ "192.0.2.1", "192.168.0.1/24", "2001:db8::1/64" ] } }, "link": { "description": "link settings of the interface", "type": "object", "oneOf": [ { "description": "generic interface", "required": [ "kind" ], "properties": { "kind": { "type": "string", "description": "link type", "enum": [ "bond", "bridge", "gtp", "ifb", "ip6tnl", "ipoib", "ipvlan", "macvlan", "macvtap", "physical", "team", "tuntap", "veth", "vrf", "vti", "vti6" ] }, "state": { "$ref": "#/definitions/iface-link_state" }, "master": { "$ref": "#/definitions/iface-link_master" } } }, { "description": "Dummy network interface", "required": [ "kind" ], "additionalProperties": false, "properties": { "kind": { "type": "string", "description": "link type", "enum": [ "dummy" ] }, "state": { "$ref": "#/definitions/iface-link_state" }, "master": { "$ref": "#/definitions/iface-link_master" } } }, { "description": "VLAN interface", "required": [ "kind", "link", "vlan_id" ], "additionalProperties": false, "properties": { "kind": { "type": "string", "description": "link type", "enum": [ "vlan" ] }, "state": { "$ref": "#/definitions/iface-link_state" }, "master": { "$ref": "#/definitions/iface-link_master" }, "link": { "$ref": "#/definitions/iface-link_link" }, "vlan_id": { "type": [ "integer" ], "minimum": 0, "maximum": 4094, "description": "specifies the VLAN identifier to use" } } }, { "description": "VXLAN interface", "required": [ "kind", "vxlan_id", "vxlan_link" ], "additionalProperties": false, "properties": { "kind": { "type": "string", "description": "link type", "enum": [ "vxlan" ] }, "state": { "$ref": "#/definitions/iface-link_state" }, "master": { "$ref": "#/definitions/iface-link_master" }, "vxlan_id": { "type": [ "integer" ], "minimum": 0, "maximum": 16777215, "description": "specifies the VNI" }, "vxlan_link": { "$ref": "#/definitions/iface-link_tun-dev" } } }, { "description": "IPIP interface", "required": [ "kind", "ipip_remote", "ipip_local" ], "additionalProperties": false, "properties": { "kind": { "type": "string", "description": "link type", "enum": [ "ipip" ] }, "state": { "$ref": "#/definitions/iface-link_state" }, "master": { "$ref": "#/definitions/iface-link_master" }, "ipip_remote": { "$ref": "#/definitions/iface-link_tun-remote4" }, "ipip_local": { "$ref": "#/definitions/iface-link_tun-local4" } } }, { "description": "SIT interface", "required": [ "kind", "sit_remote", "sit_local" ], "additionalProperties": false, "properties": { "kind": { "type": "string", "description": "link type", "enum": [ "sit" ] }, "state": { "$ref": "#/definitions/iface-link_state" }, "master": { "$ref": "#/definitions/iface-link_master" }, "sit_remote": { "$ref": "#/definitions/iface-link_tun-remote4" }, "sit_local": { "$ref": "#/definitions/iface-link_tun-local4" } } }, { "description": "GRE, GRETAP interface", "required": [ "kind", "gre_remote", "gre_local" ], "additionalProperties": false, "properties": { "kind": { "type": "string", "description": "link type", "enum": [ "gre", "gretap" ] }, "state": { "$ref": "#/definitions/iface-link_state" }, "master": { "$ref": "#/definitions/iface-link_master" }, "gre_remote": { "$ref": "#/definitions/iface-link_tun-remote4" }, "gre_local": { "$ref": "#/definitions/iface-link_tun-local4" }, "gre_link": { "$ref": "#/definitions/iface-link_tun-dev" } } }, { "description": "IP6GRE, IP6GRETAP interface", "required": [ "kind", "ip6gre_remote", "ip6gre_local" ], "additionalProperties": false, "properties": { "kind": { "type": "string", "description": "link type", "enum": [ "ip6gre", "ip6gretap" ] }, "state": { "$ref": "#/definitions/iface-link_state" }, "master": { "$ref": "#/definitions/iface-link_master" }, "ip6gre_remote": { "$ref": "#/definitions/iface-link_tun-remote4" }, "ip6gre_local": { "$ref": "#/definitions/iface-link_tun-local4" }, "ip6gre_link": { "$ref": "#/definitions/iface-link_tun-dev" } } }, { "description": "GENEVE interface", "required": [ "kind", "geneve_id" ], "additionalProperties": false, "properties": { "kind": { "type": "string", "description": "link type", "enum": [ "geneve" ] }, "state": { "$ref": "#/definitions/iface-link_state" }, "master": { "$ref": "#/definitions/iface-link_master" }, "geneve_id": { "type": [ "integer" ], "minimum": 0, "maximum": 16777215, "description": "specifies the VNI to use" } }, "oneOf": [ { "description": "tunnel over IPv4", "required": [ "geneve_remote" ], "properties": { "geneve_remote": { "$ref": "#/definitions/iface-link_tun-remote4" } } }, { "description": "tunnel over IPv6", "required": [ "geneve_remote6" ], "properties": { "geneve_remote6": { "$ref": "#/definitions/iface-link_tun-remote6" } } } ] }, { "description": "WireGuard interface; WireGuard settings can be configured using a `wireguard` block", "required": [ "kind" ], "additionalProperties": false, "properties": { "kind": { "type": "string", "description": "link type", "enum": [ "wireguard" ] }, "state": { "$ref": "#/definitions/iface-link_state" }, "master": { "$ref": "#/definitions/iface-link_master" } } }, { "description": "XFRM interface", "required": [ "kind", "xfrm_link" ], "additionalProperties": false, "properties": { "kind": { "type": "string", "description": "link type", "enum": [ "xfrm" ] }, "state": { "$ref": "#/definitions/iface-link_state" }, "master": { "$ref": "#/definitions/iface-link_master" }, "xfrm_link": { "$ref": "#/definitions/iface-link_tun-dev", "description": "underlying interface used to send and receive the transformed traffic" }, "xfrm_if_id": { "type": [ "integer" ], "minimum": 0, "maximum": 4294967295, "default": 0, "description": "lookup key to match xfrm policies" } } } ] }, "sysctl": { "description": "[interface sysctl settings](https://www.kernel.org/doc/Documentation/networking/ip-sysctl.txt) in `/proc/sys/net/ipv*/conf/{IFACE}/`", "$ref": "#/definitions/iface-sysctl" }, "ethtool": { "description": "network driver and hardware settings via [ethtool(8)](https://man7.org/linux/man-pages/man8/ethtool.8.html)", "type": "object", "additionalProperties": false, "properties": { "pause": { "type": "object", "additionalProperties": false, "description": "pause parameters", "properties": { "autoneg": { "description": "enable pause autonegotiation", "$ref": "#/definitions/iface-ethtool_onoff" }, "rx": { "description": "enable Rx pause", "$ref": "#/definitions/iface-ethtool_onoff" }, "tx": { "description": "enable Tx pause", "$ref": "#/definitions/iface-ethtool_onoff" } } }, "coalesce": { "type": "object", "additionalProperties": false, "description": "interrupt coalescing", "properties": { "adaptive-rx": { "$ref": "#/definitions/iface-ethtool_onoff" }, "adaptive-tx": { "$ref": "#/definitions/iface-ethtool_onoff" }, "rx-usecs": { "type": "integer" }, "rx-frames": { "type": "integer" }, "rx-usecs-irq": { "type": "integer" }, "rx-frames-irq": { "type": "integer" }, "tx-usecs": { "type": "integer" }, "tx-frames": { "type": "integer" }, "tx-usecs-irq": { "type": "integer" }, "tx-frames-irq": { "type": "integer" }, "stats-block-usecs": { "type": "integer" }, "pkt-rate-low": { "type": "integer" }, "rx-usecs-low": { "type": "integer" }, "rx-frames-low": { "type": "integer" }, "tx-usecs-low": { "type": "integer" }, "tx-frames-low": { "type": "integer" }, "pkt-rate-high": { "type": "integer" }, "rx-usecs-high": { "type": "integer" }, "rx-frames-high": { "type": "integer" }, "tx-usecs-high": { "type": "integer" }, "tx-frames-high": { "type": "integer" }, "sample-interval": { "type": "integer" } } }, "ring": { "type": "object", "additionalProperties": false, "description": "rx/tx ring parameters", "properties": { "rx": { "description": "number of ring entries for the Rx ring", "type": "integer" }, "rx-mmini": { "description": "number of ring entries for the Rx Mini ring", "type": "integer" }, "rx-jumbo": { "description": "number of ring entries for the Rx Jumbo ring", "type": "integer" }, "tx": { "description": "number of ring entries for the Tx ring", "type": "integer" } } }, "features": { "type": "object", "additionalProperties": false, "description": "offload parameters and other features", "properties": { "rx": { "description": "enable RX checksumming", "$ref": "#/definitions/iface-ethtool_onoff" }, "tx": { "description": "enable TX checksumming", "$ref": "#/definitions/iface-ethtool_onoff" }, "sg": { "description": "enable scatter-gather", "$ref": "#/definitions/iface-ethtool_onoff" }, "tso": { "description": "enable TCP segmentation offload", "$ref": "#/definitions/iface-ethtool_onoff" }, "ufo": { "description": "enable UDP fragmentation offload", "$ref": "#/definitions/iface-ethtool_onoff" }, "gso": { "description": "enable generic segmentation offload", "$ref": "#/definitions/iface-ethtool_onoff" }, "gro": { "description": "enable generic receive offload", "$ref": "#/definitions/iface-ethtool_onoff" }, "lro": { "description": "enable large receive offload", "$ref": "#/definitions/iface-ethtool_onoff" }, "rxvlan": { "description": "enable RX VLAN acceleration", "$ref": "#/definitions/iface-ethtool_onoff" }, "txvlan": { "description": "enable TX VLAN acceleration", "$ref": "#/definitions/iface-ethtool_onoff" }, "ntuple": { "description": "enable Rx ntuple filters and actions", "$ref": "#/definitions/iface-ethtool_onoff" }, "rxhash": { "description": "enable receive hashing offload", "$ref": "#/definitions/iface-ethtool_onoff" } } }, "change": { "type": "object", "additionalProperties": false, "description": "device settings", "properties": { "speed": { "description": "speed in Mbps", "type": "integer" }, "duplex": { "description": "full or half duplex mode", "type": "string", "enum": [ "half", "full" ] }, "port": { "description": "device port selection", "type": "string", "enum": [ "tp", "aui", "bnc", "mii" ] }, "mdix": { "description": "MDI-X mode for port", "type": [ "boolean", "string" ], "enum": [ "auto", "on", "off", true, false ] }, "autoneg": { "description": "enable autonegotation", "$ref": "#/definitions/iface-ethtool_onoff" }, "advertise": { "description": "speed and duplex advertised by autonegotation", "type": "integer" }, "phyad": { "description": "PHY address", "type": "integer" }, "xcvr": { "description": "transceiver type", "type": "string", "enum": [ "internal", "external" ] }, "wol": { "description": "Wake-on-LAN options", "type": "string", "pattern": "^[pumbagsfd]+$" }, "sopass": { "description": "SecureOn™ password", "type": "string", "pattern": "^[0-9a-f]{2}:[0-9a-f]{2}:[0-9a-f]{2}:[0-9a-f]{2}:[0-9a-f]{2}:[0-9a-f]{2}$" }, "msglvl": { "description": "driver message flags", "oneOf": [ { "description": "driver message flags by number", "type": "integer" }, { "description": "driver message flags by name", "type": "array", "items": [ { "description": "flag name", "type": "string", "enum": [ "drv", "probe", "link", "timer", "ifdown", "ifup", "rx_err", "tx_err", "tx_queued", "intr", "tx_done", "rx_status", "pktdata", "hw", "wol" ] }, { "description": "enable flag", "$ref": "#/definitions/iface-ethtool_onoff" } ] } ] } } }, "channels": { "type": "object", "additionalProperties": false, "description": "number of channels", "properties": { "rx": { "description": "number of channels with only receive queues", "type": "integer" }, "tx": { "description": "number of channels with only transmit queues", "type": "integer" }, "other": { "description": "number of channels used only for other purposes", "type": "integer" }, "combined": { "description": "number of multi-purpose channels", "type": "integer" } } }, "eee": { "type": "object", "additionalProperties": false, "description": "Energy-Efficient Ethernet (according to the IEEE 802.3az specifications)", "properties": { "eee": { "description": "enable EEE support", "$ref": "#/definitions/iface-ethtool_onoff" }, "tx-lpi": { "description": "assert Tx LPI", "$ref": "#/definitions/iface-ethtool_onoff" }, "advertise": { "description": "sets the speed for which EEE should be enabled (see also `change.advertise`)", "type": "integer" }, "tx-timer": { "description": "amount of idle time prior asserting Tx LPI (in microseconds)", "type": "integer" } } }, "phy-tunable": { "type": "object", "additionalProperties": false, "description": "PHY tunable parameters", "properties": { "downshift": { "description": "enable downshift", "oneOf": [ { "description": "enable downshift", "$ref": "#/definitions/iface-ethtool_onoff" }, { "type": "array", "minItems": 3, "maxItems": 3, "items": [ { "description": "enable downshift", "$ref": "#/definitions/iface-ethtool_onoff" }, { "description": "*REQUIRED*", "type": "string", "enum": [ "count" ] }, { "description": "PHY downshift re-tries count", "type": "integer" } ] } ] }, "fast-link-down": { "description": "enable Fast Link Down", "oneOf": [ { "description": "enable Fast Link Down", "$ref": "#/definitions/iface-ethtool_onoff" }, { "type": "array", "minItems": 3, "maxItems": 3, "items": [ { "description": "enable Fast Link Down", "$ref": "#/definitions/iface-ethtool_onoff" }, { "description": "*REQUIRED*", "type": "string", "enum": [ "msec" ] }, { "description": "period after which the link is reported as down", "type": "integer" } ] } ] }, "energy-detect-power-down": { "description": "enable Energy Detect Power Down (EDPD)", "oneOf": [ { "description": "enable EDPD", "$ref": "#/definitions/iface-ethtool_onoff" }, { "type": "array", "minItems": 3, "maxItems": 3, "items": [ { "description": "enable EDPD", "$ref": "#/definitions/iface-ethtool_onoff" }, { "description": "*REQUIRED*", "type": "string", "enum": [ "msec" ] }, { "description": "wake-up interval for Tx pulses", "type": "integer" } ] } ] } } }, "priv-flags": { "type": "object", "description": "private flags" }, "fec": { "type": "object", "additionalProperties": false, "description": "Forward Error Correction", "properties": { "encoding": { "description": "FEC encoding", "type": [ "string", "array" ], "enum": [ "auto", "off", "RS", "BaseR", "LLRS" ], "items": { "type": "string", "enum": [ "auto", "RS", "BaseR", "LLRS" ] } } } } } }, "tc": { "description": "settings for traffic control", "type": "object", "additionalProperties": false, "properties": { "qdisc": { "description": "root queueing disciplines", "$ref": "#/definitions/iface-tc_qdisc" }, "filter": { "description": "filter used by qdiscs", "type": "array", "items": { "type": "object", "required": [ "kind" ], "properties": { "kind": { "type": "string", "description": "filter type", "enum": [ "basic", "flow", "fw", "matchall" ] } }, "oneOf": [ { "description": "[basic](https://man7.org/linux/man-pages/man8/tc-basic.8.html) - basic traffic control filter", "additionalProperties": false, "properties": { "kind": { "type": "string", "enum": [ "basic" ] }, "protocol": { "$ref": "#/definitions/iface-tc_protocol" }, "prio": { "$ref": "#/definitions/iface-tc_prio" }, "action": { "$ref": "#/definitions/iface-tc_action" }, "match": { "description": "match packets using the [extended match infrastructure](https://man7.org/linux/man-pages/man8/tc-ematch.8.html)", "type": "object" } } }, { "description": "[flow](https://man7.org/linux/man-pages/man8/tc-flow.8.html) - flow based traffic control filter", "properties": { "kind": { "type": "string", "enum": [ "flow" ] }, "protocol": { "$ref": "#/definitions/iface-tc_protocol" }, "prio": { "$ref": "#/definitions/iface-tc_prio" }, "action": { "$ref": "#/definitions/iface-tc_action" }, "baseclass": { "description": "offset for the class ID calculation", "type": "integer", "minimum": 0, "maximum": 65535, "default": 1 }, "divisor": { "type": "integer", "minimum": 0, "maximum": 4294967295 }, "or": { "type": "integer", "minimum": 0, "maximum": 4294967295 }, "and": { "type": "integer", "minimum": 0, "maximum": 4294967295 }, "xor": { "type": "integer", "minimum": 0, "maximum": 4294967295 }, "rshift": { "type": "integer", "minimum": 0, "maximum": 4294967295 }, "addend": { "type": "integer", "minimum": 0, "maximum": 4294967295 } }, "oneOf": [ { "required": [ "kind", "mode", "key" ], "properties": { "mode": { "description": "filter mode", "type": "string", "enum": [ "map" ] }, "key": { "description": "map to class ID by key", "type": "string", "enum": [ "src", "dst", "proto", "proto-src", "proto-dst", "iif", "priority", "mark", "nfct", "nfct-src", "nfct-dst", "nfct-proto-src", "nfct-proto-dst", "rt-classid", "sk-uid", "sk-gid", "vlan-tag", "rxhash" ] } } }, { "required": [ "kind", "mode", "keys" ], "properties": { "mode": { "description": "filter mode", "type": "string", "enum": [ "hash" ] }, "keys": { "description": "hash over keys for class ID calculation", "type": "array", "items": { "type": "string", "enum": [ "src", "dst", "proto", "proto-src", "proto-dst", "iif", "priority", "mark", "nfct", "nfct-src", "nfct-dst", "nfct-proto-src", "nfct-proto-dst", "rt-classid", "sk-uid", "sk-gid", "vlan-tag", "rxhash" ] } }, "perturb": { "description": "rehashing interval (in seconds)", "type": "integer", "minimum": 0, "maximum": 294967295 } } } ] }, { "description": "[fw](https://man7.org/linux/man-pages/man8/tc-fw.8.html) - fwmark traffic control filter", "additionalProperties": false, "required": [ "kind", "handle" ], "properties": { "kind": { "type": "string", "enum": [ "fw" ] }, "protocol": { "$ref": "#/definitions/iface-tc_protocol" }, "prio": { "$ref": "#/definitions/iface-tc_prio" }, "action": { "$ref": "#/definitions/iface-tc_action" }, "handle": { "description": "fwmark (iptables) to match", "type": "integer", "minimum": 0 } } }, { "description": "[matchall](https://man7.org/linux/man-pages/man8/tc-matchall.8.html) - traffic control filter that matches every packet", "additionalProperties": false, "properties": { "kind": { "type": "string", "enum": [ "matchall" ] }, "protocol": { "$ref": "#/definitions/iface-tc_protocol" }, "prio": { "$ref": "#/definitions/iface-tc_prio" }, "action": { "$ref": "#/definitions/iface-tc_action" }, "classid": { "description": "push matching packets into class", "type": "integer", "minimum": 0, "maximum": 4294967295 }, "flags": { "description": "process flags (1: SKIP_HW, 2: SKIP_SW)", "type": "integer", "minimum": 0, "maximum": 4294967295 } } } ] } } } }, "wireguard": { "description": "settings for WireGuard interfaces", "type": "object", "additionalProperties": false, "required": [ "private_key" ], "properties": { "private_key": { "description": "local private key (consider to use the `!include` tag to read the key from file)", "type": "string" }, "listen_port": { "description": "port for listening", "type": "integer", "minimum": 0, "maximum": 65535 }, "fwmark": { "description": "fwmark for outgoing packets", "type": "integer", "minimum": 0, "maximum": 4294967295 }, "peers": { "description": "list of peer definitions", "type": "array", "items": { "type": "object", "additionalProperties": false, "required": [ "public_key" ], "properties": { "public_key": { "description": "the peer's public key", "type": "string" }, "preshared_key": { "description": "preshared key for post-quantum resistance (consider to use the `!include` tag to read the key from file)", "type": "string" }, "endpoint": { "description": "initial endpoint IP or hostname", "type": "string" }, "persistent_keepalive": { "description": "keepalive interval seconds", "type": "integer", "minimum": 0, "maximum": 65535 }, "allowedips": { "description": "list of prefixes in CIDR notation", "type": "array", "items": { "type": "string", "format": "ipv4,ipv6" } } } } } } } } } }, "routing": { "type": "object", "additionalProperties": false, "properties": { "routes": { "type": "array", "items": { "type": "object", "required": [ "to" ], "additionalProperties": false, "properties": { "dev": { "type": [ "integer", "string" ] }, "proto": { "type": [ "integer", "string" ], "default": "boot" }, "realm": { "type": [ "integer", "string" ] }, "scope": { "type": [ "integer", "string" ] }, "table": { "type": [ "integer", "string" ], "default": "main" }, "to": { "type": "string" }, "via": { "type": "string" } } } }, "rules": { "type": "array", "items": { "type": "object", "if": { "properties": { "action": { "const": "to_tbl" } } }, "then": { "required": [ "table", "priority" ] }, "else": { "required": [ "priority" ] }, "additionalProperties": false, "properties": { "action": { "type": [ "integer", "string" ], "description": "the type of this rule", "enum": [ "to_tbl", "blackhole", "unreachable", "prohibit" ], "default": "to_tbl" }, "table": { "type": [ "integer", "string" ], "minimum": 0, "maximum": 255 }, "priority": { "type": "integer", "description": "the priority of this rule", "minimum": 0, "maximum": 4294967295 }, "from": { "type": "string", "description": "select the source prefix to match", "format": "ipv4,ipv6" }, "to": { "type": "string", "description": "select the destination prefix to match", "format": "ipv4,ipv6" }, "iif": { "type": "string", "description": "select the incoming device to match" }, "oif": { "type": "string", "description": "select the outgoing device to match" }, "proto": { "type": [ "integer", "string" ], "default": "unspec", "description": "routing protocol number (`/etc/iproute2/rt_protos`)" }, "fwmark": { "type": "integer", "description": "select the *fwmark* value to match" }, "ipproto": { "type": [ "integer", "string" ], "description": "select the ip protocol to match" } } } } } } } }