[PATCH 1/3] nfsim-testsuite: don't depend on NAT for name lookup checks

All of lore.kernel.org
 help / color / mirror / Atom feed

* [PATCH 1/3] nfsim-testsuite: don't depend on NAT for name lookup checks
@ 2005-11-05 11:35 KOVACS Krisztian
  0 siblings, 0 replies; only message in thread
From: KOVACS Krisztian @ 2005-11-05 11:35 UTC (permalink / raw)
  To: netfilter-devel; +Cc: Harald Welte, Rusty Russell

[-- Attachment #1: Type: text/plain, Size: 173 bytes --]


  Hi,

  The current test for iptables name lookups and the -n option depends 
on NAT. This is bad, as nf_conntrack does not support NAT.

-- 
 Regards,
  Krisztian Kovacs

[-- Attachment #2: 01-nfsim-testsuite-no_nat_for_namelookup_test.patch --]
[-- Type: text/x-diff, Size: 1330 bytes --]

Don't depend on NAT to check whether NS lookup is working.

Index: nfsim-testsuite/01iptables/15namelookup.sim
===================================================================
--- nfsim-testsuite/01iptables/15namelookup.sim	(revision 4444)
+++ nfsim-testsuite/01iptables/15namelookup.sim	(working copy)
@@ -1,13 +1,13 @@
 # Test that name lookup works.
 
 # This succeeds.
-iptables -t nat -A POSTROUTING -s localhost -d localhost -p tcp -j SNAT --to-source 192.168.1.1
-iptables -t nat -D POSTROUTING -s 127.0.0.1 -d 127.0.0.1 -p tcp -j SNAT --to-source 192.168.1.1
+iptables -A INPUT -s localhost -d localhost -p tcp -j ACCEPT
+iptables -D INPUT -s 127.0.0.1 -d 127.0.0.1 -p tcp -j ACCEPT
 
 # These will fail.
 expect iptables iptables: command failed
-iptables -t nat -A POSTROUTING -n -s localhost -d 127.0.0.1 -p 6 -j SNAT --to-source 192.168.1.1
+iptables -A INPUT -n -s localhost -d 127.0.0.1 -p 6 -j ACCEPT
 expect iptables iptables: command failed
-iptables -t nat -A POSTROUTING -n -s 127.0.0.1 -d localhost -p 6 -j SNAT --to-source 192.168.1.1
+iptables -A INPUT -n -s 127.0.0.1 -d localhost -p 6 -j ACCEPT
 expect iptables iptables: command failed
-iptables -t nat -A POSTROUTING -n -s 127.0.0.1 -d 127.0.0.1 -p tcp -j SNAT --to-source 192.168.1.1 
+iptables -A INPUT -n -s 127.0.0.1 -d 127.0.0.1 -p tcp -j ACCEPT

^ permalink raw reply	[flat|nested] only message in thread

only message in thread, other threads:[~2005-11-05 11:35 UTC | newest]

Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2005-11-05 11:35 [PATCH 1/3] nfsim-testsuite: don't depend on NAT for name lookup checks KOVACS Krisztian

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.