1 files changed, 189 insertions, 0 deletions

diff --git a/smoketest/scripts/cli/test_load_balancning_wan.py b/smoketest/scripts/cli/test_load_balancning_wan.py
new file mode 100755
index 000000000..8e54f66a3
--- /dev/null
+++ b/smoketest/scripts/cli/test_load_balancning_wan.py
@@ -0,0 +1,189 @@
+#!/usr/bin/env python3
+#
+# Copyright (C) 2022 VyOS maintainers and contributors
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2 or later as
+# published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+import os
+import unittest
+import time
+
+from base_vyostest_shim import VyOSUnitTestSHIM
+from vyos.configsession import ConfigSessionError
+from vyos.ifconfig import Section
+from vyos.util import call
+from vyos.util import cmd
+
+
+base_path = ['load-balancing']
+
+
+def create_netns(name):
+    return call(f'sudo ip netns add {name}')
+
+def create_veth_pair(local='veth0', peer='ceth0'):
+    return call(f'sudo ip link add {local} type veth peer name {peer}')
+
+def move_interface_to_netns(iface, netns_name):
+    return call(f'sudo ip link set {iface} netns {netns_name}')
+
+def rename_interface(iface, new_name):
+    return call(f'sudo ip link set {iface} name {new_name}')
+
+def cmd_in_netns(netns, cmd):
+    return call(f'sudo ip netns exec {netns} {cmd}')
+
+def delete_netns(name):
+    return call(f'sudo ip netns del {name}')
+
+
+class TestLoadBalancingWan(VyOSUnitTestSHIM.TestCase):
+    @classmethod
+    def setUpClass(cls):
+        super(TestLoadBalancingWan, cls).setUpClass()
+
+        # ensure we can also run this test on a live system - so lets clean
+        # out the current configuration :)
+        cls.cli_delete(cls, base_path)
+
+    def tearDown(self):
+        self.cli_delete(base_path)
+        self.cli_commit()
+
+    def test_table_routes(self):
+
+        ns1 = 'ns201'
+        ns2 = 'ns202'
+        iface1 = 'eth201'
+        iface2 = 'eth202'
+        container_iface1 = 'ceth0'
+        container_iface2 = 'ceth1'
+
+        # Create network namespeces
+        create_netns(ns1)
+        create_netns(ns2)
+        create_veth_pair(iface1, container_iface1)
+        create_veth_pair(iface2, container_iface2)
+        move_interface_to_netns(container_iface1, ns1)
+        move_interface_to_netns(container_iface2, ns2)
+        call(f'sudo ip address add 203.0.113.10/24 dev {iface1}')
+        call(f'sudo ip address add 192.0.2.10/24 dev {iface2}')
+        call(f'sudo ip link set dev {iface1} up')
+        call(f'sudo ip link set dev {iface2} up')
+        cmd_in_netns(ns1, f'ip link set {container_iface1} name eth0')
+        cmd_in_netns(ns2, f'ip link set {container_iface2} name eth0')
+        cmd_in_netns(ns1, 'ip address add 203.0.113.1/24 dev eth0')
+        cmd_in_netns(ns2, 'ip address add 192.0.2.1/24 dev eth0')
+        cmd_in_netns(ns1, 'ip link set dev eth0 up')
+        cmd_in_netns(ns2, 'ip link set dev eth0 up')
+
+        # Set load-balancing configuration
+        self.cli_set(base_path + ['wan', 'interface-health', iface1, 'failure-count', '2'])
+        self.cli_set(base_path + ['wan', 'interface-health', iface1, 'nexthop', '203.0.113.1'])
+        self.cli_set(base_path + ['wan', 'interface-health', iface1, 'success-count', '1'])
+        self.cli_set(base_path + ['wan', 'interface-health', iface2, 'failure-count', '2'])
+        self.cli_set(base_path + ['wan', 'interface-health', iface2, 'nexthop', '192.0.2.1'])
+        self.cli_set(base_path + ['wan', 'interface-health', iface2, 'success-count', '1'])
+
+        # commit changes
+        self.cli_commit()
+
+        time.sleep(5)
+        # Check default routes in tables 201, 202
+        # Expected values
+        original = 'default via 203.0.113.1 dev eth201'
+        tmp = cmd('sudo ip route show table 201')
+        self.assertEqual(tmp, original)
+
+        original = 'default via 192.0.2.1 dev eth202'
+        tmp = cmd('sudo ip route show table 202')
+        self.assertEqual(tmp, original)
+
+        # Delete veth interfaces and netns
+        for iface in [iface1, iface2]:
+            call(f'sudo ip link del dev {iface}')
+
+        delete_netns(ns1)
+        delete_netns(ns2)
+
+    def test_check_chains(self):
+
+        ns1 = 'nsA'
+        ns2 = 'nsB'
+        iface1 = 'veth1'
+        iface2 = 'veth2'
+        container_iface1 = 'ceth0'
+        container_iface2 = 'ceth1'
+        mangle_isp1 = """table ip mangle {
+	chain ISP_veth1 {
+		counter ct mark set 0xc9 
+		counter meta mark set 0xc9 
+		counter accept
+	}
+}"""
+        mangle_isp2 = """table ip mangle {
+	chain ISP_veth2 {
+		counter ct mark set 0xca 
+		counter meta mark set 0xca 
+		counter accept
+	}
+}"""
+
+        # Create network namespeces
+        create_netns(ns1)
+        create_netns(ns2)
+        create_veth_pair(iface1, container_iface1)
+        create_veth_pair(iface2, container_iface2)
+        move_interface_to_netns(container_iface1, ns1)
+        move_interface_to_netns(container_iface2, ns2)
+        call(f'sudo ip address add 203.0.113.10/24 dev {iface1}')
+        call(f'sudo ip address add 192.0.2.10/24 dev {iface2}')
+        call(f'sudo ip link set dev {iface1} up')
+        call(f'sudo ip link set dev {iface2} up')
+        cmd_in_netns(ns1, f'ip link set {container_iface1} name eth0')
+        cmd_in_netns(ns2, f'ip link set {container_iface2} name eth0')
+        cmd_in_netns(ns1, 'ip address add 203.0.113.1/24 dev eth0')
+        cmd_in_netns(ns2, 'ip address add 192.0.2.1/24 dev eth0')
+        cmd_in_netns(ns1, 'ip link set dev eth0 up')
+        cmd_in_netns(ns2, 'ip link set dev eth0 up')
+
+        # Set load-balancing configuration
+        self.cli_set(base_path + ['wan', 'interface-health', iface1, 'failure-count', '2'])
+        self.cli_set(base_path + ['wan', 'interface-health', iface1, 'nexthop', '203.0.113.1'])
+        self.cli_set(base_path + ['wan', 'interface-health', iface1, 'success-count', '1'])
+        self.cli_set(base_path + ['wan', 'interface-health', iface2, 'failure-count', '2'])
+        self.cli_set(base_path + ['wan', 'interface-health', iface2, 'nexthop', '192.0.2.1'])
+        self.cli_set(base_path + ['wan', 'interface-health', iface2, 'success-count', '1'])
+
+        # commit changes
+        self.cli_commit()
+
+        time.sleep(5)
+        # Check chains
+        #call('sudo nft list ruleset')
+        tmp = cmd(f'sudo nft -s list chain mangle ISP_{iface1}')
+        self.assertEqual(tmp, mangle_isp1)
+
+        tmp = cmd(f'sudo nft -s list chain mangle ISP_{iface2}')
+        self.assertEqual(tmp, mangle_isp2)
+
+        # Delete veth interfaces and netns
+        for iface in [iface1, iface2]:
+            call(f'sudo ip link del dev {iface}')
+
+        delete_netns(ns1)
+        delete_netns(ns2)
+
+
+if __name__ == '__main__':
+    unittest.main(verbosity=2)