pfctl tests: basic source and state limiter tests
Sponsored by: Rubicon Communications, LLC ("Netgate")
This commit is contained in:
@@ -0,0 +1,2 @@
|
||||
state limiter "dns-server" id 1 limit 1000 rate 1/10
|
||||
pass in proto tcp to port domain state limiter "dns-server"
|
||||
@@ -0,0 +1,2 @@
|
||||
state limiter dns-server id 1 limit 1000 rate 1/10
|
||||
pass in proto tcp from any to any port = domain flags S/SA keep state state limiter id 1
|
||||
@@ -0,0 +1,2 @@
|
||||
source limiter "dns-server" id 1 entries 2 limit 3 rate 4/5 inet mask 16
|
||||
pass in proto tcp to port domain source limiter "dns-server"
|
||||
@@ -0,0 +1,2 @@
|
||||
source limiter dns-server id 1 limit 2 states 3 rate 4/5 inet mask 16
|
||||
pass in proto tcp from any to any port = domain flags S/SA keep state source limiter id 1
|
||||
@@ -184,3 +184,5 @@ PFCTL_TEST_FAIL(1072, "Invalid port range")
|
||||
PFCTL_TEST(1073, "Filter AF different than route-to AF, with prefer-ipv6-nexthop")
|
||||
PFCTL_TEST_FAIL(1074, "Filter AF different than route-to AF, without prefer-ipv6-nexthop")
|
||||
PFCTL_TEST(1075, "One shot rule")
|
||||
PFCTL_TEST(1076, "State limiter")
|
||||
PFCTL_TEST(1077, "Source limiter")
|
||||
|
||||
Reference in New Issue
Block a user