diff options
| author | Markus Friedl <markus@cvs.openbsd.org> | 2008-05-09 02:44:56 +0000 |
|---|---|---|
| committer | Markus Friedl <markus@cvs.openbsd.org> | 2008-05-09 02:44:56 +0000 |
| commit | 6b5278216d3e945e7764e8fb4d6084731d9c1d42 (patch) | |
| tree | e16579e8549035c8a3ce6525cf6278091980d103 /regress/sbin/pfctl | |
| parent | bf10d8a20a778604168423fc81c27ee72bc63285 (diff) | |
divert packets to local socket without modifying the ip header;
makes transparent proxies much easier; ok beck@, feedback claudio@
Diffstat (limited to 'regress/sbin/pfctl')
| -rw-r--r-- | regress/sbin/pfctl/Makefile | 3 | ||||
| -rw-r--r-- | regress/sbin/pfctl/pf97.in | 4 | ||||
| -rw-r--r-- | regress/sbin/pfctl/pf97.ok | 4 |
3 files changed, 10 insertions, 1 deletions
diff --git a/regress/sbin/pfctl/Makefile b/regress/sbin/pfctl/Makefile index f92d2b6652c..0e50487367f 100644 --- a/regress/sbin/pfctl/Makefile +++ b/regress/sbin/pfctl/Makefile @@ -1,4 +1,4 @@ -# $OpenBSD: Makefile,v 1.202 2008/05/08 00:44:57 mpf Exp $ +# $OpenBSD: Makefile,v 1.203 2008/05/09 02:44:55 markus Exp $ # TARGETS # pf: feed pfNN.in through pfctl and check wether the output matches pfNN.ok @@ -15,6 +15,7 @@ PFTESTS=1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 PFTESTS+=28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 PFTESTS+=51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 PFTESTS+=74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 +PFTESTS+=97 PFFAIL=1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 23 24 25 27 PFFAIL+=28 29 30 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 PFSIMPLE=1 2 diff --git a/regress/sbin/pfctl/pf97.in b/regress/sbin/pfctl/pf97.in new file mode 100644 index 00000000000..8f3d9415a96 --- /dev/null +++ b/regress/sbin/pfctl/pf97.in @@ -0,0 +1,4 @@ +pass in on em0 inet proto tcp from any to any port 220:230 divert-to 127.0.0.1 22 +pass out on em0 inet proto tcp from any to any port 220:230 divert-reply +pass in on em0 inet proto 103 divert-to 127.0.0.1 103 +pass on em0 inet proto tcp from any to any port 80 divert-to 127.0.0.1 8080 diff --git a/regress/sbin/pfctl/pf97.ok b/regress/sbin/pfctl/pf97.ok new file mode 100644 index 00000000000..66377f1c422 --- /dev/null +++ b/regress/sbin/pfctl/pf97.ok @@ -0,0 +1,4 @@ +pass in on em0 inet proto tcp from any to any port 220:230 flags S/SA keep state divert-to 127.0.0.1 22 +pass out on em0 inet proto tcp from any to any port 220:230 flags S/SA keep state divert-reply +pass in on em0 inet proto pim all keep state divert-to 127.0.0.1 103 +pass on em0 inet proto tcp from any to any port = www flags S/SA keep state divert-to 127.0.0.1 8080 |