diff options
author | Patrick McHardy <kaber@trash.net> | 2009-03-18 04:55:00 +0100 |
---|---|---|
committer | Patrick McHardy <kaber@trash.net> | 2009-03-18 04:55:00 +0100 |
commit | fac10ea799fe9b6158d74f66d6ad46536d38a545 (patch) | |
tree | 8c093bcbb2144aab54c70103e6ed438456ae0d48 /tests/expr-meta |
Initial commitv0.01-alpha1
Diffstat (limited to 'tests/expr-meta')
-rwxr-xr-x | tests/expr-meta | 40 |
1 files changed, 40 insertions, 0 deletions
diff --git a/tests/expr-meta b/tests/expr-meta new file mode 100755 index 00000000..122d2895 --- /dev/null +++ b/tests/expr-meta @@ -0,0 +1,40 @@ +#! nft -f + +table add ip filter +chain add ip filter output NF_INET_LOCAL_OUT 0 + +# meta: skb len +rule add ip filter output meta length 1000 counter + +# meta: skb protocol +rule add ip filter output meta protocol 0x0800 counter + +# meta: skb mark +rule add ip filter output meta mark 0 counter + +# meta: skb iif +rule add ip filter output meta iif 1 counter + +# meta: skb iifname +rule add ip filter output meta iifname "eth0" counter + +# meta: skb oif +rule add ip filter output meta oif 1 counter + +# meta: skb oifname +rule add ip filter output meta oifname "eth0" counter + +# meta: skb sk uid +rule add ip filter output meta skuid 1000 counter + +# meta: skb sk gid +rule add ip filter output meta skgid 1000 counter + +# meta: nftrace - broken, probably should be removed to avoid abuse +#rule add ip filter output meta nftrace 0 counter + +# meta: rtclassid +rule add ip filter output meta rtclassid 1 counter + +# meta: secmark +rule add ip filter output meta secmark 0 counter |