From b0f6a45b25dd1b8e4ab0e3b2dd2a00d918ae29c0 Mon Sep 17 00:00:00 2001
From: Pablo Neira Ayuso <pablo@netfilter.org>
Date: Tue, 3 Jul 2018 17:24:05 +0200
Subject: src: add --literal option

Default not to print the service name as we discussed during the NFWS.

 # nft list ruleset
 table ip x {
        chain y {
                tcp dport 22
                ip saddr 1.1.1.1
        }
 }

 # nft -l list ruleset
 table ip x {
        chain y {
                tcp dport ssh
                ip saddr 1.1.1.1
        }
 }

 # nft -ll list ruleset
 table ip x {
        chain y {
                tcp dport 22
                ip saddr 1dot1dot1dot1.cloudflare-dns.com
        }
 }

Then, -ll displays FQDN. just like the (now deprecated) --ip2name (-N)
option.

Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
---
 tests/shell/testcases/sets/dumps/0020comments_0.nft             | 2 +-
 tests/shell/testcases/sets/dumps/0022type_selective_flush_0.nft | 2 +-
 tests/shell/testcases/sets/dumps/0025anonymous_set_0.nft        | 2 +-
 tests/shell/testcases/sets/dumps/0026named_limit_0.nft          | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

(limited to 'tests/shell/testcases/sets')

diff --git a/tests/shell/testcases/sets/dumps/0020comments_0.nft b/tests/shell/testcases/sets/dumps/0020comments_0.nft
index d5330848..8b7d60aa 100644
--- a/tests/shell/testcases/sets/dumps/0020comments_0.nft
+++ b/tests/shell/testcases/sets/dumps/0020comments_0.nft
@@ -1,6 +1,6 @@
 table inet t {
 	set s {
 		type inet_service
-		elements = { ssh comment "test" }
+		elements = { 22 comment "test" }
 	}
 }
diff --git a/tests/shell/testcases/sets/dumps/0022type_selective_flush_0.nft b/tests/shell/testcases/sets/dumps/0022type_selective_flush_0.nft
index 58c213ff..e518906c 100644
--- a/tests/shell/testcases/sets/dumps/0022type_selective_flush_0.nft
+++ b/tests/shell/testcases/sets/dumps/0022type_selective_flush_0.nft
@@ -8,6 +8,6 @@ table ip t {
 	}
 
 	chain c {
-		tcp dport http meter f size 1024 { ip saddr limit rate 10/second} 
+		tcp dport 80 meter f size 1024 { ip saddr limit rate 10/second} 
 	}
 }
diff --git a/tests/shell/testcases/sets/dumps/0025anonymous_set_0.nft b/tests/shell/testcases/sets/dumps/0025anonymous_set_0.nft
index c823ae9d..78b7dec5 100644
--- a/tests/shell/testcases/sets/dumps/0025anonymous_set_0.nft
+++ b/tests/shell/testcases/sets/dumps/0025anonymous_set_0.nft
@@ -2,6 +2,6 @@ table ip t {
 	chain c {
 		type filter hook output priority 0; policy accept;
 		ip daddr { 192.168.0.1, 192.168.0.2, 192.168.0.3 }
-		tcp dport { ssh, telnet } counter packets 0 bytes 0
+		tcp dport { 22, 23 } counter packets 0 bytes 0
 	}
 }
diff --git a/tests/shell/testcases/sets/dumps/0026named_limit_0.nft b/tests/shell/testcases/sets/dumps/0026named_limit_0.nft
index 0d1f1254..5d63ab20 100644
--- a/tests/shell/testcases/sets/dumps/0026named_limit_0.nft
+++ b/tests/shell/testcases/sets/dumps/0026named_limit_0.nft
@@ -5,6 +5,6 @@ table ip filter {
 
 	chain input {
 		type filter hook input priority 0; policy accept;
-		limit name tcp dport map { http : "http-traffic", https : "http-traffic" }
+		limit name tcp dport map { 80 : "http-traffic", 443 : "http-traffic" }
 	}
 }
-- 
cgit v1.2.3