Blame iptables/tests/shell/testcases/ebtables/0003-ebtables-restore-defaults_0
|
Packit |
7b22a4 |
#!/bin/bash
|
|
Packit |
7b22a4 |
|
|
Packit |
7b22a4 |
set -e
|
|
Packit |
7b22a4 |
|
|
Packit |
7b22a4 |
# there is no legacy backend to test
|
|
Packit |
7b22a4 |
[[ $XT_MULTI == */xtables-nft-multi ]] || { echo "skip $XT_MULTI"; exit 0; }
|
|
Packit |
7b22a4 |
|
|
Packit |
7b22a4 |
# ebtables-restore reuses preloaded targets and matches, make sure defaults
|
|
Packit |
7b22a4 |
# apply to consecutive rules using the same target/match as a previous one
|
|
Packit |
7b22a4 |
|
|
Packit |
7b22a4 |
DUMP='*filter
|
|
Packit |
7b22a4 |
:FORWARD ACCEPT
|
|
Packit |
7b22a4 |
-A FORWARD --limit 100 --limit-burst 42 -j ACCEPT
|
|
Packit |
7b22a4 |
-A FORWARD --limit 1000 -j ACCEPT
|
|
Packit |
7b22a4 |
-A FORWARD --log --log-prefix "foobar"
|
|
Packit |
7b22a4 |
-A FORWARD --log'
|
|
Packit |
7b22a4 |
|
|
Packit |
7b22a4 |
# note how limit-burst is 5 in second rule and log-prefix empty in fourth one
|
|
Packit |
7b22a4 |
|
|
Packit |
7b22a4 |
EXPECT='*filter
|
|
Packit |
7b22a4 |
:INPUT ACCEPT
|
|
Packit |
7b22a4 |
:FORWARD ACCEPT
|
|
Packit |
7b22a4 |
:OUTPUT ACCEPT
|
|
Packit |
7b22a4 |
-A FORWARD --limit 100/sec --limit-burst 42 -j ACCEPT
|
|
Packit |
7b22a4 |
-A FORWARD --limit 1000/sec --limit-burst 5 -j ACCEPT
|
|
Packit |
7b22a4 |
-A FORWARD --log-level notice --log-prefix "foobar" -j CONTINUE
|
|
Packit |
7b22a4 |
-A FORWARD --log-level notice --log-prefix "" -j CONTINUE'
|
|
Packit |
7b22a4 |
|
|
Packit |
7b22a4 |
$XT_MULTI ebtables --init-table
|
|
Packit |
7b22a4 |
$XT_MULTI ebtables-restore <<<$DUMP
|
|
Packit |
7b22a4 |
diff -u <(echo -e "$EXPECT") <($XT_MULTI ebtables-save | grep -v '^#')
|