[Ferm] [PATCH 1/7] Fix conceptual error in ebtables/basic.ferm test
Faidon Liambotis
paravoid at debian.org
Wed Jul 6 02:21:21 CEST 2011
saddr in ebtables is referring to MAC addresses, not IPs; fix the
reference and while at it, add another check for "proto IPv4 ip-source"
as well.
---
test/ebtables/basic.ferm | 3 ++-
test/ebtables/basic.result | 3 ++-
2 files changed, 4 insertions(+), 2 deletions(-)
diff --git a/test/ebtables/basic.ferm b/test/ebtables/basic.ferm
index 2417e36..98d94c1 100644
--- a/test/ebtables/basic.ferm
+++ b/test/ebtables/basic.ferm
@@ -1,5 +1,6 @@
domain eb chain INPUT {
- saddr 192.168.1.1 DROP;
+ saddr 00:11:22:33:44:55 DROP;
+ proto IPv4 ip-source 192.168.1.1 DROP;
proto ARP ACCEPT;
interface eth0 logical-in br0 outerface eth1 logical-out br1 ACCEPT;
saddr Multicast daddr Broadcast DROP;
diff --git a/test/ebtables/basic.result b/test/ebtables/basic.result
index 283ae15..67effe8 100644
--- a/test/ebtables/basic.result
+++ b/test/ebtables/basic.result
@@ -1,7 +1,8 @@
ebtables -t filter -P INPUT ACCEPT
ebtables -t filter -F
ebtables -t filter -X
-ebtables -t filter -A INPUT --source 192.168.1.1 -j DROP
+ebtables -t filter -A INPUT --source 00:11:22:33:44:55 -j DROP
+ebtables -t filter -A INPUT --protocol IPv4 --ip-source 192.168.1.1 -j DROP
ebtables -t filter -A INPUT --protocol ARP -j ACCEPT
ebtables -t filter -A INPUT --in-interface eth0 --logical-in br0 --out-interface eth1 --logical-out br1 -j ACCEPT
ebtables -t filter -A INPUT --source Multicast --destination Broadcast -j DROP
--
1.7.2.5
More information about the Ferm
mailing list