shishantbiswas/coder
1
0
Fork 0
mirror of https://github.com/coder/coder.git synced 2026-06-03 13:08:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
75f5b60eb6a674220249e7da73158faef44db289
coder/enterprise/cli/testdata/coder_boundary_--help.golden
T
Zach 9613e41d21 chore: update boundary version (#22289) 
Updating to the latest tag before the 2.31 code freeze.
2026-02-24 13:33:37 -05:00

62 lines
2.1 KiB
Plaintext
Raw Blame History

coder v0.0.0-devel
USAGE:
coder boundary [flags] [args...]
Network isolation tool for monitoring and restricting HTTP/HTTPS requests
boundary creates an isolated network environment for target processes,
intercepting HTTP/HTTPS traffic through a transparent proxy that enforces
user-defined allow rules.
OPTIONS:
--allow string, $BOUNDARY_ALLOW
Allow rule (repeatable). These are merged with allowlist from config
file. Format: "pattern" or "METHOD[,METHOD] pattern".
string-array
Allowlist rules from config file (YAML only).
--config yaml-config-path, $BOUNDARY_CONFIG
Path to YAML config file.
--disable-audit-logs bool, $DISABLE_AUDIT_LOGS
Disable sending of audit logs to the workspace agent when set to true.
--jail-type string, $BOUNDARY_JAIL_TYPE (default: nsjail)
Jail type to use for network isolation. Options: nsjail (default),
landjail.
--log-dir string, $BOUNDARY_LOG_DIR
Set a directory to write logs to rather than stderr.
--log-level string, $BOUNDARY_LOG_LEVEL (default: warn)
Set log level (error, warn, info, debug).
--log-proxy-socket-path string, $CODER_AGENT_BOUNDARY_LOG_PROXY_SOCKET_PATH (default: /tmp/boundary-audit.sock)
Path to the socket where the boundary log proxy server listens for
audit logs.
--no-user-namespace bool, $BOUNDARY_NO_USER_NAMESPACE
Do not create a user namespace. Use in restricted environments that
disallow user NS (e.g. Bottlerocket in EKS auto-mode).
--pprof bool, $BOUNDARY_PPROF
Enable pprof profiling server.
--pprof-port int, $BOUNDARY_PPROF_PORT (default: 6060)
Set port for pprof profiling server.
--proxy-port int, $PROXY_PORT (default: 8080)
Set a port for HTTP proxy.
--use-real-dns bool, $BOUNDARY_USE_REAL_DNS
Use real DNS in the jail instead of the dummy DNS (allows DNS
exfiltration). Default: false.
--version bool
Print version information and exit.
———
Run `coder --help` for a list of global options.
Reference in New Issue View Git Blame Copy Permalink