diff options
| author | Ryan Thomas McBride <mcbride@cvs.openbsd.org> | 2003-02-23 00:22:12 +0000 |
|---|---|---|
| committer | Ryan Thomas McBride <mcbride@cvs.openbsd.org> | 2003-02-23 00:22:12 +0000 |
| commit | 6e94c9b071f460629edbf7fd5134844d38161760 (patch) | |
| tree | 168da4fdedb84e7e241fd079d26340e31f55213e /regress/sbin | |
| parent | 18277b31407af0b29950359c75fc613ef2fa4cbe (diff) | |
Test for invalid scrub rules.
Diffstat (limited to 'regress/sbin')
| -rw-r--r-- | regress/sbin/pfctl/Makefile | 4 | ||||
| -rw-r--r-- | regress/sbin/pfctl/pfail25.in | 11 | ||||
| -rw-r--r-- | regress/sbin/pfctl/pfail25.ok | 12 |
3 files changed, 25 insertions, 2 deletions
diff --git a/regress/sbin/pfctl/Makefile b/regress/sbin/pfctl/Makefile index 1e52664ac9e..1d844c638e2 100644 --- a/regress/sbin/pfctl/Makefile +++ b/regress/sbin/pfctl/Makefile @@ -1,4 +1,4 @@ -# $OpenBSD: Makefile,v 1.93 2003/02/22 23:26:39 mcbride Exp $ +# $OpenBSD: Makefile,v 1.94 2003/02/23 00:22:11 mcbride Exp $ # TARGETS # pf: feed pfNN.in through pfctl and check wether the output matches pfNN.ok @@ -13,7 +13,7 @@ PFTESTS=1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 PFTESTS+=28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 PFTESTS+=51 52 53 54 55 56 -PFFAIL=1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 +PFFAIL=1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 PFSIMPLE=1 PFSETUP=1 2 3 PFLOAD=1 2 3 4 5 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 23 24 25 26 27 28 29 diff --git a/regress/sbin/pfctl/pfail25.in b/regress/sbin/pfctl/pfail25.in new file mode 100644 index 00000000000..f1d1c06cad1 --- /dev/null +++ b/regress/sbin/pfctl/pfail25.in @@ -0,0 +1,11 @@ +scrub in quick from any to any +scrub in on ! lo0 +scrub in no-df no-df +scrub out min-ttl 4 min-ttl 5 +scrub in all min-ttl 256 +scrub out min-ttl 65536 +scrub in from localhost to localhost max-mss 512 max-mss 1280 +scrub on lo0 fragment crop fragment crop +scrub in on lo0 from any to localhost fragment drop-ovl fragment crop +scrub in on lo0 from any to 127.0.0.1 fragment reassemble fragment drop-ovl +scrub from localhost random-id random-id diff --git a/regress/sbin/pfctl/pfail25.ok b/regress/sbin/pfctl/pfail25.ok new file mode 100644 index 00000000000..4ed0f2a87bf --- /dev/null +++ b/regress/sbin/pfctl/pfail25.ok @@ -0,0 +1,12 @@ +stdin:1: scrub rules do not support 'quick' +stdin:2: scrub rules do not support '! <if>' +stdin:3: no-df cannot be respecified +stdin:4: min-ttl cannot be respecified +stdin:5: illegal min-ttl value 256 +stdin:6: illegal min-ttl value 65536 +stdin:7: max-mss cannot be respecified +stdin:8: fragcache cannot be respecified +stdin:9: fragcache cannot be respecified +stdin:10: fragcache cannot be respecified +stdin:11: random-id cannot be respecified +pfctl: Syntax error in file: pf rules not loaded |