diff options
author | Daniel Hartmeier <dhartmei@cvs.openbsd.org> | 2002-12-18 10:13:17 +0000 |
---|---|---|
committer | Daniel Hartmeier <dhartmei@cvs.openbsd.org> | 2002-12-18 10:13:17 +0000 |
commit | 545036bceed180b4d0beea12160470c1640e7cd8 (patch) | |
tree | b5bf96ef8d2da466f5328690d7731c71817b0a02 /regress/sbin | |
parent | 976b5ef09173bcf0fd4db1a503bc4ea61078cc25 (diff) |
Regress test nat-anchor, rdr-anchor and binat-anchor rules.
Diffstat (limited to 'regress/sbin')
-rw-r--r-- | regress/sbin/pfctl/pf41.in | 14 | ||||
-rw-r--r-- | regress/sbin/pfctl/pf41.ok | 46 |
2 files changed, 60 insertions, 0 deletions
diff --git a/regress/sbin/pfctl/pf41.in b/regress/sbin/pfctl/pf41.in index de5dc1e2ff2..e7e9140a62d 100644 --- a/regress/sbin/pfctl/pf41.in +++ b/regress/sbin/pfctl/pf41.in @@ -1,3 +1,17 @@ +nat-anchor foo +nat-anchor foo all +nat-anchor foo from any to any +nat-anchor foo inet proto tcp from 10.0.0.0/8 to !1.2.3.4 +nat-anchor foo inet proto { udp, tcp } from { 10.1.2.3, 10.2.3.4 } port { 2000, < 2100 } to { 10.3.4.5, 10.4.5.6 } port { < 1000, > 1100 } +rdr-anchor bar +rdr-anchor bar all +rdr-anchor bar from any to any +rdr-anchor bar inet proto tcp from 10.0.0.0/8 to !1.2.3.4 +rdr-anchor bar inet proto { udp, tcp } from any to 10.1.2.3/24 port 25 +binat-anchor baz +binat-anchor baz all +binat-anchor baz from any to any +binat-anchor baz inet proto tcp from any to any anchor foo anchor bar all anchor bar from any to any diff --git a/regress/sbin/pfctl/pf41.ok b/regress/sbin/pfctl/pf41.ok index 5377a19c253..256945fe23c 100644 --- a/regress/sbin/pfctl/pf41.ok +++ b/regress/sbin/pfctl/pf41.ok @@ -1,3 +1,49 @@ +nat-anchor foo all +nat-anchor foo all +nat-anchor foo all +nat-anchor foo inet proto tcp from 10.0.0.0/8 to ! 1.2.3.4 +nat-anchor foo inet proto udp from 10.1.2.3 port = 2000 to 10.3.4.5 port < 1000 +nat-anchor foo inet proto udp from 10.1.2.3 port = 2000 to 10.3.4.5 port > 1100 +nat-anchor foo inet proto udp from 10.1.2.3 port = 2000 to 10.4.5.6 port < 1000 +nat-anchor foo inet proto udp from 10.1.2.3 port = 2000 to 10.4.5.6 port > 1100 +nat-anchor foo inet proto udp from 10.1.2.3 port < 2100 to 10.3.4.5 port < 1000 +nat-anchor foo inet proto udp from 10.1.2.3 port < 2100 to 10.3.4.5 port > 1100 +nat-anchor foo inet proto udp from 10.1.2.3 port < 2100 to 10.4.5.6 port < 1000 +nat-anchor foo inet proto udp from 10.1.2.3 port < 2100 to 10.4.5.6 port > 1100 +nat-anchor foo inet proto udp from 10.2.3.4 port = 2000 to 10.3.4.5 port < 1000 +nat-anchor foo inet proto udp from 10.2.3.4 port = 2000 to 10.3.4.5 port > 1100 +nat-anchor foo inet proto udp from 10.2.3.4 port = 2000 to 10.4.5.6 port < 1000 +nat-anchor foo inet proto udp from 10.2.3.4 port = 2000 to 10.4.5.6 port > 1100 +nat-anchor foo inet proto udp from 10.2.3.4 port < 2100 to 10.3.4.5 port < 1000 +nat-anchor foo inet proto udp from 10.2.3.4 port < 2100 to 10.3.4.5 port > 1100 +nat-anchor foo inet proto udp from 10.2.3.4 port < 2100 to 10.4.5.6 port < 1000 +nat-anchor foo inet proto udp from 10.2.3.4 port < 2100 to 10.4.5.6 port > 1100 +nat-anchor foo inet proto tcp from 10.1.2.3 port = 2000 to 10.3.4.5 port < 1000 +nat-anchor foo inet proto tcp from 10.1.2.3 port = 2000 to 10.3.4.5 port > 1100 +nat-anchor foo inet proto tcp from 10.1.2.3 port = 2000 to 10.4.5.6 port < 1000 +nat-anchor foo inet proto tcp from 10.1.2.3 port = 2000 to 10.4.5.6 port > 1100 +nat-anchor foo inet proto tcp from 10.1.2.3 port < 2100 to 10.3.4.5 port < 1000 +nat-anchor foo inet proto tcp from 10.1.2.3 port < 2100 to 10.3.4.5 port > 1100 +nat-anchor foo inet proto tcp from 10.1.2.3 port < 2100 to 10.4.5.6 port < 1000 +nat-anchor foo inet proto tcp from 10.1.2.3 port < 2100 to 10.4.5.6 port > 1100 +nat-anchor foo inet proto tcp from 10.2.3.4 port = 2000 to 10.3.4.5 port < 1000 +nat-anchor foo inet proto tcp from 10.2.3.4 port = 2000 to 10.3.4.5 port > 1100 +nat-anchor foo inet proto tcp from 10.2.3.4 port = 2000 to 10.4.5.6 port < 1000 +nat-anchor foo inet proto tcp from 10.2.3.4 port = 2000 to 10.4.5.6 port > 1100 +nat-anchor foo inet proto tcp from 10.2.3.4 port < 2100 to 10.3.4.5 port < 1000 +nat-anchor foo inet proto tcp from 10.2.3.4 port < 2100 to 10.3.4.5 port > 1100 +nat-anchor foo inet proto tcp from 10.2.3.4 port < 2100 to 10.4.5.6 port < 1000 +nat-anchor foo inet proto tcp from 10.2.3.4 port < 2100 to 10.4.5.6 port > 1100 +rdr-anchor bar from any to any +rdr-anchor bar from any to any +rdr-anchor bar from any to any +rdr-anchor bar inet proto tcp from 10.0.0.0/8 to ! 1.2.3.4 +rdr-anchor bar inet proto udp from any to 10.1.2.0/24 port 25 +rdr-anchor bar inet proto tcp from any to 10.1.2.0/24 port 25 +binat-anchor baz from any to any +binat-anchor baz from any to any +binat-anchor baz from any to any +binat-anchor baz inet proto tcp from any to any anchor foo all anchor bar all anchor bar all |