enable-disable forwards

2026-03-26 02:11:53 +00:00 · 2026-03-10 09:34:09 -06:00
parent 30f6492abc
commit c10fb66fa0
9 changed files with 165 additions and 6 deletions
--- a/core/src/tunnel/api.rs
+++ b/core/src/tunnel/api.rs
@@ -60,6 +60,14 @@ pub fn tunnel_api<C: Context>() -> ParentHandler<C> {
                        .no_display()
                        .with_about("about.update-port-forward-label")
                        .with_call_remote::<CliContext>(),
+                )
+                .subcommand(
+                    "set-enabled",
+                    from_fn_async(set_forward_enabled)
+                        .with_metadata("sync_db", Value::Bool(true))
+                        .no_display()
+                        .with_about("about.enable-or-disable-port-forward")
+                        .with_call_remote::<CliContext>(),
                ),
        )
        .subcommand(
@@ -497,7 +505,7 @@ pub async fn add_forward(
        m.insert(source, rc);
    });

-    let entry = PortForwardEntry { target, label };
+    let entry = PortForwardEntry { target, label, enabled: true };

    ctx.db
        .mutate(|db| {
@@ -568,3 +576,64 @@ pub async fn update_forward_label(
        .await
        .result
 }
+
+#[derive(Deserialize, Serialize, Parser)]
+#[serde(rename_all = "camelCase")]
+pub struct SetPortForwardEnabledParams {
+    source: SocketAddrV4,
+    enabled: bool,
+}
+
+pub async fn set_forward_enabled(
+    ctx: TunnelContext,
+    SetPortForwardEnabledParams { source, enabled }: SetPortForwardEnabledParams,
+) -> Result<(), Error> {
+    let target = ctx
+        .db
+        .mutate(|db| {
+            db.as_port_forwards_mut().mutate(|pf| {
+                let entry = pf.0.get_mut(&source).ok_or_else(|| {
+                    Error::new(
+                        eyre!("Port forward from {source} not found"),
+                        ErrorKind::NotFound,
+                    )
+                })?;
+                entry.enabled = enabled;
+                Ok(entry.target)
+            })
+        })
+        .await
+        .result?;
+
+    if enabled {
+        let prefix = ctx
+            .net_iface
+            .peek(|i| {
+                i.iter()
+                    .find_map(|(_, i)| {
+                        i.ip_info.as_ref().and_then(|i| {
+                            i.subnets
+                                .iter()
+                                .find(|s| s.contains(&IpAddr::from(*target.ip())))
+                        })
+                    })
+                    .cloned()
+            })
+            .map(|s| s.prefix_len())
+            .unwrap_or(32);
+        let rc = ctx
+            .forward
+            .add_forward(source, target, prefix, None)
+            .await?;
+        ctx.active_forwards.mutate(|m| {
+            m.insert(source, rc);
+        });
+    } else {
+        if let Some(rc) = ctx.active_forwards.mutate(|m| m.remove(&source)) {
+            drop(rc);
+            ctx.forward.gc().await?;
+        }
+    }
+
+    Ok(())
+}
--- a/core/src/tunnel/context.rs
+++ b/core/src/tunnel/context.rs
@@ -185,6 +185,9 @@ impl TunnelContext {

        let mut active_forwards = BTreeMap::new();
        for (from, entry) in peek.as_port_forwards().de()?.0 {
+            if !entry.enabled {
+                continue;
+            }
            let to = entry.target;
            let prefix = net_iface
                .peek(|i| {
--- a/core/src/tunnel/db.rs
+++ b/core/src/tunnel/db.rs
@@ -76,6 +76,12 @@ pub struct PortForwardEntry {
    pub target: SocketAddrV4,
    #[serde(default)]
    pub label: String,
+    #[serde(default = "default_true")]
+    pub enabled: bool,
+}
+
+fn default_true() -> bool {
+    true
 }

 #[derive(Clone, Debug, Default, Deserialize, Serialize, TS)]