diff options
| author | Jozsef Kadlecsik <kadlec@blackhole.kfki.hu> | 2015-03-13 21:18:58 +0100 |
|---|---|---|
| committer | Jozsef Kadlecsik <kadlec@blackhole.kfki.hu> | 2015-03-13 21:18:58 +0100 |
| commit | 6fa394d59d91e6cfa3c107128ad1f7d6a6d70257 (patch) | |
| tree | c1dc228398ac68ba2e7848e360adc00db724dc6e /tests/iptables.sh | |
| parent | fee333d674a4c697c1f33952bbc060ee810d9307 (diff) | |
Fix cidr handling for hash:*net* types
Commit 092d67cda9ad4 broke the cidr handling for the hash:*net* types
when the sets were used by the SET target: entries with invalid cidr
values were added to the sets. Reported by Jonathan Johnson.
Testsuite entry is added to verify the fix.
Diffstat (limited to 'tests/iptables.sh')
| -rwxr-xr-x | tests/iptables.sh | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/tests/iptables.sh b/tests/iptables.sh index c5b9bf7..7ea90e0 100755 --- a/tests/iptables.sh +++ b/tests/iptables.sh @@ -95,6 +95,11 @@ del) $cmd -F INPUT $cmd -A INPUT -j SET --del-set ipport src,src ;; +add) + $ipset n test hash:net $family 2>/dev/null + $cmd -F INPUT + $cmd -A INPUT -j SET --add-set test src + ;; timeout) $ipset n test hash:ip,port timeout 2 $cmd -A INPUT -j SET --add-set test src,src --timeout 10 --exist |