diff options
| author | Kristof Provost <kp@FreeBSD.org> | 2022-04-12 11:20:18 +0000 |
|---|---|---|
| committer | Kristof Provost <kp@FreeBSD.org> | 2022-04-20 11:01:12 +0000 |
| commit | 812839e5aaaf495a85ac7dcb743b565c4792d74d (patch) | |
| tree | 6cf1ae83c374cfeeb2ad0bce3baec26ac5973ce2 /tests/sys/netpfil/pf | |
| parent | 583bb9c530b2316c83017fc51517d3acad1ed9dd (diff) | |
| download | src-812839e5aaaf495a85ac7dcb743b565c4792d74d.tar.gz src-812839e5aaaf495a85ac7dcb743b565c4792d74d.zip | |
pf: allow the use of tables in ethernet rules
Allow tables to be used for the l3 source/destination matching.
This requires taking the PF_RULES read lock.
Sponsored by: Rubicon Communications, LLC ("Netgate")
Differential Revision: https://reviews.freebsd.org/D34917
Diffstat (limited to 'tests/sys/netpfil/pf')
| -rw-r--r-- | tests/sys/netpfil/pf/ether.sh | 10 |
1 files changed, 6 insertions, 4 deletions
diff --git a/tests/sys/netpfil/pf/ether.sh b/tests/sys/netpfil/pf/ether.sh index 7a7f91844148..da936c9cfaeb 100644 --- a/tests/sys/netpfil/pf/ether.sh +++ b/tests/sys/netpfil/pf/ether.sh @@ -537,10 +537,12 @@ ip_body() "ether block out l3 to 192.0.2.3" atf_check -s exit:2 -o ignore ping -c 1 192.0.2.2 - # We can't use tables in these rules - echo "ether pass out l3 from <test>" | \ - atf_check -s exit:1 -o ignore -e ignore \ - jexec alcatraz pfctl -g -f - + # Test table + pft_set_rules alcatraz \ + "table <tbl> { 192.0.2.3 }" \ + "ether pass" \ + "ether block out l3 to <tbl>" + atf_check -s exit:2 -o ignore ping -c 1 192.0.2.2 } ip_cleanup() |