diff options
author | Christian Poessinger <christian@poessinger.com> | 2022-04-06 16:38:08 +0200 |
---|---|---|
committer | GitHub <noreply@github.com> | 2022-04-06 16:38:08 +0200 |
commit | a101f6d66a055e3cc45371cac3943d1ab9cb0232 (patch) | |
tree | d0d9b133d60e950d047c3f602395d90cf7349dfc /smoketest | |
parent | 15f48b521780a9a1116be85e848721f488e67a13 (diff) | |
parent | c514cea0ad94a00838530cd07f87723be372ea8f (diff) | |
download | vyos-1x-a101f6d66a055e3cc45371cac3943d1ab9cb0232.tar.gz vyos-1x-a101f6d66a055e3cc45371cac3943d1ab9cb0232.zip |
Merge pull request #1275 from sarthurdev/firewall_limit
firewall: T4345: Fix incorrect firewall rule limit rate format
Diffstat (limited to 'smoketest')
-rw-r--r-- | smoketest/configs/dialup-router-complex | 3 | ||||
-rwxr-xr-x | smoketest/scripts/cli/test_firewall.py | 5 |
2 files changed, 8 insertions, 0 deletions
diff --git a/smoketest/configs/dialup-router-complex b/smoketest/configs/dialup-router-complex index 1b62deb5c..ac5ff5e99 100644 --- a/smoketest/configs/dialup-router-complex +++ b/smoketest/configs/dialup-router-complex @@ -498,6 +498,9 @@ firewall { destination { port 110,995 } + limit { + rate "10/minute" + } protocol tcp } rule 123 { diff --git a/smoketest/scripts/cli/test_firewall.py b/smoketest/scripts/cli/test_firewall.py index ecc0c29a0..16b020e07 100755 --- a/smoketest/scripts/cli/test_firewall.py +++ b/smoketest/scripts/cli/test_firewall.py @@ -88,6 +88,10 @@ class TestFirewall(VyOSUnitTestSHIM.TestCase): self.cli_set(['firewall', 'name', 'smoketest', 'rule', '2', 'destination', 'port', '8888']) self.cli_set(['firewall', 'name', 'smoketest', 'rule', '2', 'tcp', 'flags', 'syn']) self.cli_set(['firewall', 'name', 'smoketest', 'rule', '2', 'tcp', 'flags', 'not', 'ack']) + self.cli_set(['firewall', 'name', 'smoketest', 'rule', '3', 'action', 'accept']) + self.cli_set(['firewall', 'name', 'smoketest', 'rule', '3', 'protocol', 'tcp']) + self.cli_set(['firewall', 'name', 'smoketest', 'rule', '3', 'destination', 'port', '22']) + self.cli_set(['firewall', 'name', 'smoketest', 'rule', '3', 'limit', 'rate', '5/minute']) self.cli_set(['interfaces', 'ethernet', 'eth0', 'firewall', 'in', 'name', 'smoketest']) @@ -97,6 +101,7 @@ class TestFirewall(VyOSUnitTestSHIM.TestCase): ['iifname "eth0"', 'jump NAME_smoketest'], ['saddr 172.16.20.10', 'daddr 172.16.10.10', 'return'], ['tcp flags & (syn | ack) == syn', 'tcp dport { 8888 }', 'reject'], + ['tcp dport { 22 }', 'limit rate 5/minute', 'return'], ['smoketest default-action', 'drop'] ] |