summaryrefslogtreecommitdiff
path: root/smoketest/scripts/cli/test_service_ids.py
diff options
context:
space:
mode:
authorChristian Poessinger <christian@poessinger.com>2022-07-25 19:36:24 +0200
committerGitHub <noreply@github.com>2022-07-25 19:36:24 +0200
commit55d7ff854cfe0eba1b0a53e1316976471ce2d914 (patch)
tree6ff52e2be7a71bf8e9fca28498fa091c81c8e628 /smoketest/scripts/cli/test_service_ids.py
parentdf7348da111668d38796d955bf64fa384eb7a58f (diff)
parentbd119de6fd32480a4b6fd9c3b16cd5191af350af (diff)
downloadvyos-1x-55d7ff854cfe0eba1b0a53e1316976471ce2d914.tar.gz
vyos-1x-55d7ff854cfe0eba1b0a53e1316976471ce2d914.zip
Merge pull request #1434 from aalmenar/T4556
fastnetmon: T4556: Allow configure white_list_path and populate with hosts/networks that should be ignored
Diffstat (limited to 'smoketest/scripts/cli/test_service_ids.py')
-rwxr-xr-xsmoketest/scripts/cli/test_service_ids.py12
1 files changed, 12 insertions, 0 deletions
diff --git a/smoketest/scripts/cli/test_service_ids.py b/smoketest/scripts/cli/test_service_ids.py
index 8720362ba..d471eeaed 100755
--- a/smoketest/scripts/cli/test_service_ids.py
+++ b/smoketest/scripts/cli/test_service_ids.py
@@ -26,6 +26,7 @@ from vyos.util import read_file
PROCESS_NAME = 'fastnetmon'
FASTNETMON_CONF = '/run/fastnetmon/fastnetmon.conf'
NETWORKS_CONF = '/run/fastnetmon/networks_list'
+EXCLUDED_NETWORKS_CONF = '/run/fastnetmon/excluded_networks_list'
base_path = ['service', 'ids', 'ddos-protection']
class TestServiceIDS(VyOSUnitTestSHIM.TestCase):
@@ -50,6 +51,7 @@ class TestServiceIDS(VyOSUnitTestSHIM.TestCase):
def test_fastnetmon(self):
networks = ['10.0.0.0/24', '10.5.5.0/24', '2001:db8:10::/64', '2001:db8:20::/64']
+ excluded_networks = ['10.0.0.1/32', '2001:db8:10::1/128']
interfaces = ['eth0', 'eth1']
fps = '3500'
mbps = '300'
@@ -62,6 +64,12 @@ class TestServiceIDS(VyOSUnitTestSHIM.TestCase):
for tmp in networks:
self.cli_set(base_path + ['network', tmp])
+ # optional excluded-network!
+ with self.assertRaises(ConfigSessionError):
+ self.cli_commit()
+ for tmp in excluded_networks:
+ self.cli_set(base_path + ['excluded-network', tmp])
+
# Required interface(s)!
with self.assertRaises(ConfigSessionError):
self.cli_commit()
@@ -100,5 +108,9 @@ class TestServiceIDS(VyOSUnitTestSHIM.TestCase):
for tmp in networks:
self.assertIn(f'{tmp}', network_config)
+ excluded_network_config = read_file(EXCLUDED_NETWORKS_CONF)
+ for tmp in excluded_networks:
+ self.assertIn(f'{tmp}', excluded_network_config)
+
if __name__ == '__main__':
unittest.main(verbosity=2)