summaryrefslogtreecommitdiff
path: root/regress/sbin
diff options
context:
space:
mode:
authorDaniel Hartmeier <dhartmei@cvs.openbsd.org>2002-12-18 10:13:17 +0000
committerDaniel Hartmeier <dhartmei@cvs.openbsd.org>2002-12-18 10:13:17 +0000
commit545036bceed180b4d0beea12160470c1640e7cd8 (patch)
treeb5bf96ef8d2da466f5328690d7731c71817b0a02 /regress/sbin
parent976b5ef09173bcf0fd4db1a503bc4ea61078cc25 (diff)
Regress test nat-anchor, rdr-anchor and binat-anchor rules.
Diffstat (limited to 'regress/sbin')
-rw-r--r--regress/sbin/pfctl/pf41.in14
-rw-r--r--regress/sbin/pfctl/pf41.ok46
2 files changed, 60 insertions, 0 deletions
diff --git a/regress/sbin/pfctl/pf41.in b/regress/sbin/pfctl/pf41.in
index de5dc1e2ff2..e7e9140a62d 100644
--- a/regress/sbin/pfctl/pf41.in
+++ b/regress/sbin/pfctl/pf41.in
@@ -1,3 +1,17 @@
+nat-anchor foo
+nat-anchor foo all
+nat-anchor foo from any to any
+nat-anchor foo inet proto tcp from 10.0.0.0/8 to !1.2.3.4
+nat-anchor foo inet proto { udp, tcp } from { 10.1.2.3, 10.2.3.4 } port { 2000, < 2100 } to { 10.3.4.5, 10.4.5.6 } port { < 1000, > 1100 }
+rdr-anchor bar
+rdr-anchor bar all
+rdr-anchor bar from any to any
+rdr-anchor bar inet proto tcp from 10.0.0.0/8 to !1.2.3.4
+rdr-anchor bar inet proto { udp, tcp } from any to 10.1.2.3/24 port 25
+binat-anchor baz
+binat-anchor baz all
+binat-anchor baz from any to any
+binat-anchor baz inet proto tcp from any to any
anchor foo
anchor bar all
anchor bar from any to any
diff --git a/regress/sbin/pfctl/pf41.ok b/regress/sbin/pfctl/pf41.ok
index 5377a19c253..256945fe23c 100644
--- a/regress/sbin/pfctl/pf41.ok
+++ b/regress/sbin/pfctl/pf41.ok
@@ -1,3 +1,49 @@
+nat-anchor foo all
+nat-anchor foo all
+nat-anchor foo all
+nat-anchor foo inet proto tcp from 10.0.0.0/8 to ! 1.2.3.4
+nat-anchor foo inet proto udp from 10.1.2.3 port = 2000 to 10.3.4.5 port < 1000
+nat-anchor foo inet proto udp from 10.1.2.3 port = 2000 to 10.3.4.5 port > 1100
+nat-anchor foo inet proto udp from 10.1.2.3 port = 2000 to 10.4.5.6 port < 1000
+nat-anchor foo inet proto udp from 10.1.2.3 port = 2000 to 10.4.5.6 port > 1100
+nat-anchor foo inet proto udp from 10.1.2.3 port < 2100 to 10.3.4.5 port < 1000
+nat-anchor foo inet proto udp from 10.1.2.3 port < 2100 to 10.3.4.5 port > 1100
+nat-anchor foo inet proto udp from 10.1.2.3 port < 2100 to 10.4.5.6 port < 1000
+nat-anchor foo inet proto udp from 10.1.2.3 port < 2100 to 10.4.5.6 port > 1100
+nat-anchor foo inet proto udp from 10.2.3.4 port = 2000 to 10.3.4.5 port < 1000
+nat-anchor foo inet proto udp from 10.2.3.4 port = 2000 to 10.3.4.5 port > 1100
+nat-anchor foo inet proto udp from 10.2.3.4 port = 2000 to 10.4.5.6 port < 1000
+nat-anchor foo inet proto udp from 10.2.3.4 port = 2000 to 10.4.5.6 port > 1100
+nat-anchor foo inet proto udp from 10.2.3.4 port < 2100 to 10.3.4.5 port < 1000
+nat-anchor foo inet proto udp from 10.2.3.4 port < 2100 to 10.3.4.5 port > 1100
+nat-anchor foo inet proto udp from 10.2.3.4 port < 2100 to 10.4.5.6 port < 1000
+nat-anchor foo inet proto udp from 10.2.3.4 port < 2100 to 10.4.5.6 port > 1100
+nat-anchor foo inet proto tcp from 10.1.2.3 port = 2000 to 10.3.4.5 port < 1000
+nat-anchor foo inet proto tcp from 10.1.2.3 port = 2000 to 10.3.4.5 port > 1100
+nat-anchor foo inet proto tcp from 10.1.2.3 port = 2000 to 10.4.5.6 port < 1000
+nat-anchor foo inet proto tcp from 10.1.2.3 port = 2000 to 10.4.5.6 port > 1100
+nat-anchor foo inet proto tcp from 10.1.2.3 port < 2100 to 10.3.4.5 port < 1000
+nat-anchor foo inet proto tcp from 10.1.2.3 port < 2100 to 10.3.4.5 port > 1100
+nat-anchor foo inet proto tcp from 10.1.2.3 port < 2100 to 10.4.5.6 port < 1000
+nat-anchor foo inet proto tcp from 10.1.2.3 port < 2100 to 10.4.5.6 port > 1100
+nat-anchor foo inet proto tcp from 10.2.3.4 port = 2000 to 10.3.4.5 port < 1000
+nat-anchor foo inet proto tcp from 10.2.3.4 port = 2000 to 10.3.4.5 port > 1100
+nat-anchor foo inet proto tcp from 10.2.3.4 port = 2000 to 10.4.5.6 port < 1000
+nat-anchor foo inet proto tcp from 10.2.3.4 port = 2000 to 10.4.5.6 port > 1100
+nat-anchor foo inet proto tcp from 10.2.3.4 port < 2100 to 10.3.4.5 port < 1000
+nat-anchor foo inet proto tcp from 10.2.3.4 port < 2100 to 10.3.4.5 port > 1100
+nat-anchor foo inet proto tcp from 10.2.3.4 port < 2100 to 10.4.5.6 port < 1000
+nat-anchor foo inet proto tcp from 10.2.3.4 port < 2100 to 10.4.5.6 port > 1100
+rdr-anchor bar from any to any
+rdr-anchor bar from any to any
+rdr-anchor bar from any to any
+rdr-anchor bar inet proto tcp from 10.0.0.0/8 to ! 1.2.3.4
+rdr-anchor bar inet proto udp from any to 10.1.2.0/24 port 25
+rdr-anchor bar inet proto tcp from any to 10.1.2.0/24 port 25
+binat-anchor baz from any to any
+binat-anchor baz from any to any
+binat-anchor baz from any to any
+binat-anchor baz inet proto tcp from any to any
anchor foo all
anchor bar all
anchor bar all