proxmox-mirrors/pve-firewall
1
0
Fork 0
mirror of https://git.proxmox.com/git/pve-firewall synced 2025-10-04 15:00:01 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

add regression tests for ipfilter

Browse Source
This commit is contained in:
Dietmar Maurer 2014-06-12 08:32:11 +02:00
parent 66f33d78ed
commit a306a176c4
3 changed files with 35 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
test/test-vm-ipfilter1/100.fw Normal file
View File

@ -0,0 +1,13 @@
[options]
enable: 1
[ipset ipfilter-net0]
1.2.3.4
1.2.3.5
[ipset ipfilter-net2] # empty, allow nothing
[rules]
IN ACCEPT -p tcp -dport 80

7
test/test-vm-ipfilter1/cluster.fw Normal file
View File

@ -0,0 +1,7 @@
[options]
enable: 1
[rules]
IN ACCEPT -p tcp -dport 80 -source 1.2.3.0/24

15
test/test-vm-ipfilter1/tests Normal file
View File

@ -0,0 +1,15 @@
{ from => 'vm100i1', source => '1.2.3.3', dport => 80, action => 'ACCEPT' }
{ from => 'vm100i1', source => '1.2.3.4', dport => 80, action => 'ACCEPT' }
{ from => 'vm100i1', source => '1.2.3.5', dport => 80, action => 'ACCEPT' }
{ from => 'vm100i1', source => '1.2.3.6', dport => 80, action => 'ACCEPT' }
{ from => 'vm100', source => '1.2.3.3', dport => 80, action => 'DROP' }
{ from => 'vm100', source => '1.2.3.4', dport => 80, action => 'ACCEPT' }
{ from => 'vm100', source => '1.2.3.5', dport => 80, action => 'ACCEPT' }
{ from => 'vm100', source => '1.2.3.6', dport => 80, action => 'DROP' }
{ from => 'vm100i2', source => '1.2.3.3', dport => 80, action => 'DROP' }
{ from => 'vm100i2', source => '1.2.3.4', dport => 80, action => 'DROP' }
{ from => 'vm100i2', source => '1.2.3.5', dport => 80, action => 'DROP' }
{ from => 'vm100i2', source => '1.2.3.6', dport => 80, action => 'DROP' }