blob: 39ea3127be89aab1c44548b9fc68edfeabc10f21 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
|
#!/bin/bash
set -e
EXPECTED="table ip filter {
map m {
type ipv4_addr : mark
flags interval
elements = { 127.0.0.2 : 0x00000002, 127.0.0.3 : 0x00000003 }
}
chain input {
type filter hook input priority filter; policy accept;
meta mark set ip daddr map @m
meta mark 0x00000002 counter accept
meta mark 0x00000003 counter accept
counter
}
}"
$NFT -f - <<< "$EXPECTED"
$NFT delete element filter m { 127.0.0.2 }
$NFT delete element filter m { 127.0.0.3 }
$NFT add element filter m { 127.0.0.3 : 0x3 }
$NFT add element filter m { 127.0.0.2 : 0x2 }
GET=$($NFT -s list ruleset)
if [ "$EXPECTED" != "$GET" ] ; then
$DIFF -u <(echo "$EXPECTED") <(echo "$GET")
exit 1
fi
|