chainmgr_test.pl

Revision 193, 1.2 kB (checked in by mbr, 4 years ago)
added chaingmgr_test.pl for testing IPTables::ChainMgr?
Property svn:eol-style set to `native` Property svn:executable set to ``* Property svn:keywords set to `Author Date Id Revision`

Line
1	#!/usr/bin/perl -w
2
3	use lib '/usr/lib/fwknop';
4	use IPTables::ChainMgr;
5	use IPTables::Parse;
6	use strict;
7
8	my $ipt = new IPTables::ChainMgr(
9	'iptables' => '/sbin/iptables'
10	);
11
12	my $rv;
13	my $status_msg;
14
15	($rv, $status_msg) = $ipt->create_chain('filter', 'FWKNOP');
16	print "$status_msg: $rv\n";
17
18	($rv, $status_msg) = $ipt->add_jump_rule('filter', 'INPUT', 'FWKNOP');
19	print "$status_msg: $rv\n";
20
21	($rv, $status_msg) = $ipt->add_ip_rule('1.1.1.1', '0.0.0.0/0',
22	1, 'filter', 'FWKNOP', 'ACCEPT', {'protocol' => 'tcp'});
23	print "$status_msg: $rv\n";
24
25	$rv = $ipt->find_ip_rule('192.168.10.2', '0.0.0.0/0', 'filter',
26	'FWKNOP_INPUT', 'ACCEPT', {'protocol' => 'tcp', 'd_port' => 22});
27	print "find ip: $rv\n";
28
29	($rv, $status_msg) = $ipt->add_ip_rule('192.168.10.2', '0.0.0.0/0', 1,
30	'filter', 'FWKNOP_INPUT', 'ACCEPT', {'protocol' => 'tcp', 'd_port' => 22});
31	print "$status_msg: $rv\n";
32
33	($rv, $status_msg) = $ipt->delete_ip_rule('1.1.1.1', '0.0.0.0/0',
34	'filter', 'FWKNOP', 'ACCEPT');
35	print "$status_msg: $rv\n";
36
37	($rv, $status_msg) = $ipt->delete_chain('filter', 'INPUT', 'FWKNOP');
38	print "$status_msg: $rv\n";
39
40	#my $aref = ();
41	#($rv, $aref) = $ipt->run_ipt_cmd_output("/sbin/iptables -n -L INPUT");
42	#print for @$aref;
43
44	exit 0;

Note: See TracBrowser for help on using the browser.