diff options
Diffstat (limited to 'tests/xmlfiles/38-rule-real.xml')
-rw-r--r-- | tests/xmlfiles/38-rule-real.xml | 59 |
1 files changed, 59 insertions, 0 deletions
diff --git a/tests/xmlfiles/38-rule-real.xml b/tests/xmlfiles/38-rule-real.xml new file mode 100644 index 0000000..423ef6d --- /dev/null +++ b/tests/xmlfiles/38-rule-real.xml @@ -0,0 +1,59 @@ +<rule family="ip" table="filter" chain="INPUT" handle="30" version="0"> + <rule_flags>0</rule_flags> + <expr type="payload"> + <dreg>1</dreg> + <offset>16</offset> + <len>4</len> + <base>network</base> + </expr> + <expr type="lookup"> + <set>set3</set> + <sreg>1</sreg> + <dreg>0</dreg> + </expr> + <expr type="payload"> + <dreg>1</dreg> + <offset>9</offset> + <len>1</len> + <base>network</base> + </expr> + <expr type="cmp"> + <sreg>1</sreg> + <op>eq</op> + <cmpdata> + <data_reg type="value"> + <len>1</len> + <data0>0x00000006</data0> + </data_reg> + </cmpdata> + </expr> + <expr type="payload"> + <dreg>1</dreg> + <offset>2</offset> + <len>2</len> + <base>transport</base> + </expr> + <expr type="cmp"> + <sreg>1</sreg> + <op>eq</op> + <cmpdata> + <data_reg type="value"> + <len>2</len> + <data0>0x0000bb01</data0> + </data_reg> + </cmpdata> + </expr> + <expr type="counter"> + <pkts>0</pkts> + <bytes>0</bytes> + </expr> + <expr type="immediate"> + <dreg>0</dreg> + <immediatedata> + <data_reg type="verdict"> + <verdict>accept</verdict> + </data_reg> + </immediatedata> + </expr> +</rule> +<!-- nft add rule ip filter INPUT ip daddr { 192.168.0.1, 192.168.0.2, 192.168.0.3 } tcp dport 443 counter accept --> |