Generate network maps for routed network

management/proto/management.proto

@@ -396,8 +396,8 @@ message PortInfo {
 
 // RouteFirewallRule signifies a firewall rule applicable for a routed network.
 message RouteFirewallRule {
-  // PeerIP IP address of the routing peer.
-  string peerIP = 1;
+  // sourceRange IP range of the routing peer.
+  string sourceRange = 1;
 
   // Direction of the firewall.
   RuleDirection direction = 2;

management/server/route.go

@@ -18,8 +18,8 @@ import (
 
 // RouteFirewallRule a firewall rule applicable for a routed network.
 type RouteFirewallRule struct {
-	// PeerIP IP address of the routing peer.
-	PeerIP string
+	// SourceRange IP range of the routing peer.
+	SourceRange string
 
 	// Direction of the traffic
 	Direction int
@@ -354,7 +354,7 @@ func generateRouteFirewallRules(route *route.Route, rule *PolicyRule, groupPeers
 		}
 
 		baseRule := RouteFirewallRule{
-			PeerIP:      peer.IP.String(),
+			SourceRange: peer.IP.String(),
 			Direction:   direction,
 			Action:      string(rule.Action),
 			Destination: route.Network.String(),
@@ -375,7 +375,7 @@ func generateRouteFirewallRules(route *route.Route, rule *PolicyRule, groupPeers
 
 // generateRuleIDBase generates the base rule ID for checking duplicates.
 func generateRuleIDBase(rule *PolicyRule, baseRule RouteFirewallRule) string {
-	return rule.ID + baseRule.PeerIP + strconv.Itoa(firewallRuleDirectionIN) + baseRule.Protocol + baseRule.Action
+	return rule.ID + baseRule.SourceRange + strconv.Itoa(firewallRuleDirectionIN) + baseRule.Protocol + baseRule.Action
 }
 
 // generateRulesForPeer generates rules for a given peer based on ports and port ranges.
@@ -457,7 +457,7 @@ func toProtocolRoutesFirewallRules(rules []*RouteFirewallRule) []*proto.RouteFir
 	for i := range rules {
 		rule := rules[i]
 		result[i] = &proto.RouteFirewallRule{
-			PeerIP:      rule.PeerIP,
+			SourceRange: rule.SourceRange,
 			Direction:   getProtoDirection(rule.Direction),
 			Action:      getProtoAction(rule.Action),
 			NetworkType: getProtoNetworkType(rule.NetworkType),

management/server/route_test.go

@@ -1459,7 +1459,7 @@ func TestAccount_getPeersRoutesFirewall(t *testing.T) {
 
 		expectedRoutesFirewallRules := []*RouteFirewallRule{
 			{
-				PeerIP:      peerCIp,
+				SourceRange: peerCIp,
 				Direction:   firewallRuleDirectionIN,
 				Action:      "accept",
 				Destination: "192.168.0.0/16",
@@ -1468,7 +1468,7 @@ func TestAccount_getPeersRoutesFirewall(t *testing.T) {
 				Port:        80,
 			},
 			{
-				PeerIP:      peerCIp,
+				SourceRange: peerCIp,
 				Direction:   firewallRuleDirectionIN,
 				Action:      "accept",
 				Destination: "192.168.0.0/16",
@@ -1477,7 +1477,7 @@ func TestAccount_getPeersRoutesFirewall(t *testing.T) {
 				Port:        320,
 			},
 			{
-				PeerIP:      peerHIp,
+				SourceRange: peerHIp,
 				Direction:   firewallRuleDirectionIN,
 				Action:      "accept",
 				Destination: "192.168.0.0/16",
@@ -1486,7 +1486,7 @@ func TestAccount_getPeersRoutesFirewall(t *testing.T) {
 				Port:        80,
 			},
 			{
-				PeerIP:      peerHIp,
+				SourceRange: peerHIp,
 				Direction:   firewallRuleDirectionIN,
 				Action:      "accept",
 				Destination: "192.168.0.0/16",
@@ -1495,7 +1495,7 @@ func TestAccount_getPeersRoutesFirewall(t *testing.T) {
 				Port:        320,
 			},
 			{
-				PeerIP:      peerBIp,
+				SourceRange: peerBIp,
 				Direction:   firewallRuleDirectionIN,
 				Action:      "accept",
 				Destination: "192.168.0.0/16",
@@ -1504,7 +1504,7 @@ func TestAccount_getPeersRoutesFirewall(t *testing.T) {
 				Port:        80,
 			},
 			{
-				PeerIP:      peerBIp,
+				SourceRange: peerBIp,
 				Direction:   firewallRuleDirectionIN,
 				Action:      "accept",
 				Destination: "192.168.0.0/16",
@@ -1526,7 +1526,7 @@ func TestAccount_getPeersRoutesFirewall(t *testing.T) {
 
 		expectedRoutesFirewallRules = []*RouteFirewallRule{
 			{
-				PeerIP:      "100.65.250.202",
+				SourceRange: "100.65.250.202",
 				Direction:   firewallRuleDirectionIN,
 				Action:      "accept",
 				Destination: existingNetwork,
@@ -1535,7 +1535,7 @@ func TestAccount_getPeersRoutesFirewall(t *testing.T) {
 				PortRange:   RulePortRange{Start: 80, End: 350},
 			},
 			{
-				PeerIP:      "100.65.13.186",
+				SourceRange: "100.65.13.186",
 				Direction:   firewallRuleDirectionIN,
 				Action:      "accept",
 				Destination: existingNetwork,