"Fossies" - the Fresh Open Source Software Archive  

Source code changes of the file "go/testdata/auto_intf.t" between
Netspoc-6.032.tar.gz and Netspoc-6.033.tar.gz

About: NetSPoC is a network security policy compiler (using its own description language) to manage all the packet filter devices inside your network topology.

auto_intf.t  (Netspoc-6.032):auto_intf.t  (Netspoc-6.033)
skipping to change at line 1087 skipping to change at line 1087
} }
=END= =END=
=OUTPUT= =OUTPUT=
--r1 --r1
! [ IP = 10.0.0.1,10.1.1.1 ] ! [ IP = 10.0.0.1,10.1.1.1 ]
=END= =END=
############################################################ ############################################################
=TITLE=Multiple interfaces talk to policy_distribution_point (2) =TITLE=Multiple interfaces talk to policy_distribution_point (2)
# Find interfaces in given order n3, n4, # Find interfaces in given order n3, n4,
# even if reversed path was already fund previously while # even if reversed path was already found previously while
# "Checking and marking rules with hidden or dynamic NAT" # "Checking and marking rules with hidden or dynamic NAT"
=INPUT= =INPUT=
network:n1 = { ip = 10.1.1.0/24; host:h1 = { ip = 10.1.1.111; } } network:n1 = { ip = 10.1.1.0/24; host:h1 = { ip = 10.1.1.111; } }
network:n2 = { ip = 10.1.2.0/30; } network:n2 = { ip = 10.1.2.0/30; }
network:n3 = { ip = 10.1.3.0/30; } network:n3 = { ip = 10.1.3.0/30; }
network:n4 = { ip = 10.1.4.0/30; } network:n4 = { ip = 10.1.4.0/30; }
network:n5 = { ip = 10.1.5.0/27; nat:h = { hidden; } } network:n5 = { ip = 10.1.5.0/27; nat:h = { hidden; } }
network:n6 = { ip = 10.1.6.0/27; } network:n6 = { ip = 10.1.6.0/27; }
router:r1 = { router:r1 = {
managed; managed;
skipping to change at line 1133 skipping to change at line 1133
permit src = user; dst = interface:r2.n3, interface:r2.n4; prt = tcp 22; permit src = user; dst = interface:r2.n3, interface:r2.n4; prt = tcp 22;
permit src = user; dst = interface:r2.n5; prt = tcp 80; permit src = user; dst = interface:r2.n5; prt = tcp 80;
} }
=END= =END=
=OUTPUT= =OUTPUT=
--r2 --r2
! [ IP = 10.1.3.2,10.1.4.1 ] ! [ IP = 10.1.3.2,10.1.4.1 ]
=END= =END=
############################################################ ############################################################
=TITLE=Multiple interfaces talk to policy_distribution_point (3)
=INPUT=
network:n1 = { ip = 10.1.1.0/24; host:h1 = { ip = 10.1.1.111; } }
network:n2 = { ip = 10.1.2.0/30; }
network:n3 = { ip = 10.1.3.0/30; }
router:r1 = {
managed;
model = ASA;
routing = manual;
policy_distribution_point = host:h1;
interface:n1 = { ip = 10.1.1.1; hardware = n1; }
interface:n2 = { ip = 10.1.2.1; hardware = n2; }
interface:n3 = { ip = 10.1.3.1; hardware = n3; }
}
service:s1 = {
user = network:n1;
permit src = user;
dst = interface:r1.[all] &! interface:r1.n1;
prt = tcp 22;
}
=OUTPUT=
--r1
! [ IP = 10.1.2.1,10.1.3.1 ]
=OPTIONS=--check_policy_distribution_point=1
############################################################
=TITLE=Only one interface in loop talks to policy_distribution_point =TITLE=Only one interface in loop talks to policy_distribution_point
=INPUT= =INPUT=
network:n1 = { ip = 10.1.1.0/24; } network:n1 = { ip = 10.1.1.0/24; }
router:r1 = { router:r1 = {
managed; managed;
model = ASA; model = ASA;
policy_distribution_point = host:netspoc; policy_distribution_point = host:netspoc;
interface:n1 = { ip = 10.1.1.3; hardware = n1; virtual = { ip = 10.1.1.1; } } interface:n1 = { ip = 10.1.1.3; hardware = n1; virtual = { ip = 10.1.1.1; } }
interface:n2 = { ip = 10.1.2.3; hardware = n2; virtual = { ip = 10.1.2.1; } } interface:n2 = { ip = 10.1.2.3; hardware = n2; virtual = { ip = 10.1.2.1; } }
} }
 End of changes. 2 change blocks. 
1 lines changed or deleted 28 lines changed or added

Home  |  About  |  Features  |  All  |  Newest  |  Dox  |  Diffs  |  RSS Feeds  |  Screenshots  |  Comments  |  Imprint  |  Privacy  |  HTTP(S)