source-git / nftables

Clone
Source Code
GIT

Files

  1.   a5243a5a9b3c703ebbe40a5cc1fdd49335463bb6
  2.   tests
  3.   shell
  4.   testcases
  5.   transactions
  6.   0003table_0
Blob Blame History Raw 
#!/bin/bash

set -e

RULESET="add table x
add table y
flush ruleset"

$NFT -f - <<< "$RULESET"
if [ $? -ne 0 ] ; then
        echo "E: unable to load good ruleset" >&2
        exit 1
fi

KERNEL_RULESET="$($NFT list ruleset)"
if [ "" != "$KERNEL_RULESET" ] ; then
	echo "Got a ruleset, but expected empty: "
	echo "$KERNEL_RULESET"
	exit 1
fi

RULESET="table ip x {
}
table ip y {
}"

$NFT -f - <<< "$RULESET"
if [ $? -ne 0 ] ; then
        echo "E: unable to load good ruleset" >&2
        exit 1
fi

RULESETFAIL="flush ruleset
create table ip nat
create table inet filter
create chain ip nat testchain
delete table ip testtable"

# testtable doesn't exist, batch expected to fail
$NFT -f - <<< "$RULESETFAIL" && exit 2

KERNEL_RULESET="$($NFT list ruleset)"
if [ "$RULESET" != "$KERNEL_RULESET" ] ; then
        $DIFF -u <(echo "$RULESET") <(echo "$KERNEL_RULESET")
        exit 1
fi

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation