[netfilter-cvslog] r3477 - trunk/nfsim-testsuite/01iptables

rusty at netfilter.org rusty at netfilter.org
Mon Dec 20 14:43:24 CET 2004 

Author: rusty at netfilter.org
Date: 2004-12-20 14:43:24 +0100 (Mon, 20 Dec 2004)
New Revision: 3477

Modified:
   trunk/nfsim-testsuite/01iptables/30LOG.sim
Log:
ESP and AH packets (trivial version).


Modified: trunk/nfsim-testsuite/01iptables/30LOG.sim
===================================================================
--- trunk/nfsim-testsuite/01iptables/30LOG.sim	2004-12-20 13:42:54 UTC (rev 3476)
+++ trunk/nfsim-testsuite/01iptables/30LOG.sim	2004-12-20 13:43:24 UTC (rev 3477)
@@ -126,6 +126,11 @@
 expect gen_ip <4>IN=eth0 OUT=eth1 SRC=192.168.0.3 DST=192.168.1.2 LEN=48 TOS=0x00 PREC=0x00 TTL=254 ID=0 PROTO=ICMP TYPE=0 CODE=0 ID=1 SEQ=2
 gen_ip IF=eth0 192.168.0.3 192.168.1.2 20 1 0 0 1 2
 
+# REDIRECT
+expect gen_err send:eth0 {IPv4 192.168.1.2 192.168.0.2 *}
+expect gen_err <4>IN=eth1 OUT=eth0 SRC=192.168.1.2 DST=192.168.0.2 LEN=56 TOS=0x00 PREC=0x00 TTL=254 ID=0 PROTO=ICMP TYPE=5 CODE=0 GATEWAY=0.0.0.0 [SRC=192.168.0.2 DST=192.168.1.2 LEN=28 TOS=0x00 PREC=0x00 TTL=255 ID=0 PROTO=ICMP TYPE=8 CODE=0 ID=55 SEQ=57 ]
+gen_err IF=eth1 192.168.1.2 5 0 192.168.0.2 192.168.1.2 0 1 8 0 55 57
+
 # For some reason ipt_LOG doesn't print out inner packet on ICMP_PARAMETERPROB.
 expect gen_err send:eth0 {IPv4 192.168.1.2 192.168.0.2 *}
 expect gen_err <4>IN=eth1 OUT=eth0 SRC=192.168.1.2 DST=192.168.0.2 LEN=56 TOS=0x00 PREC=0x00 TTL=254 ID=0 PROTO=ICMP TYPE=12 CODE=0 PARAMETER=0
@@ -137,8 +142,18 @@
 
 expect gen_err send:eth0 {IPv4 192.168.1.2 192.168.0.2 *}
 expect gen_err <4>IN=eth1 OUT=eth0 SRC=192.168.1.2 DST=192.168.0.2 LEN=56 TOS=0x00 PREC=0x00 TTL=254 ID=0 PROTO=ICMP TYPE=3 CODE=4 [SRC=192.168.0.2 DST=192.168.1.2 LEN=28 TOS=0x00 PREC=0x00 TTL=255 ID=0 PROTO=ICMP TYPE=8 CODE=0 ID=55 SEQ=57 ] MTU=0
+gen_err IF=eth1 192.168.1.2 3 4 192.168.0.2 192.168.1.2 0 1 8 0 55 57
 
-gen_err IF=eth1 192.168.1.2 3 4 192.168.0.2 192.168.1.2 0 1 8 0 55 57
+# IPPROTO_ESP (50)
+expect gen_ip send:eth1 {IPv4 192.168.0.2 192.168.1.2 20 50}
+expect gen_ip <4>IN=eth0 OUT=eth1 SRC=192.168.0.2 DST=192.168.1.2 LEN=40 TOS=0x00 PREC=0x00 TTL=254 ID=0 PROTO=ESP SPI=0x0
+gen_ip IF=eth0 192.168.0.2 192.168.1.2 20 50
+
+# IPPROTO_AH (51)
+expect gen_ip send:eth1 {IPv4 192.168.0.2 192.168.1.2 20 51}
+expect gen_ip <4>IN=eth0 OUT=eth1 SRC=192.168.0.2 DST=192.168.1.2 LEN=40 TOS=0x00 PREC=0x00 TTL=254 ID=0 PROTO=AH SPI=0x0
+gen_ip IF=eth0 192.168.0.2 192.168.1.2 20 51
+
 iptables -D FORWARD -j LOG
 
 # Test level settings (delete by name to check name -> number mapping)

More information about the netfilter-cvslog mailing list