From d4cae1d6976f034c44394837e55bf422884e50bf Mon Sep 17 00:00:00 2001
From: Dietmar Maurer <dietmar@proxmox.com>
Date: Wed, 21 May 2014 06:48:23 +0200
Subject: [PATCH] add tests for management ipset

---
 test/test-ipset1/cluster.fw | 4 ++++
 test/test-ipset1/tests      | 8 +++++++-
 2 files changed, 11 insertions(+), 1 deletion(-)

diff --git a/test/test-ipset1/cluster.fw b/test/test-ipset1/cluster.fw
index 5fbb139..d6b9525 100644
--- a/test/test-ipset1/cluster.fw
+++ b/test/test-ipset1/cluster.fw
@@ -3,6 +3,10 @@
 myserveralias 10.2.0.111
 mynetworkalias 10.3.0.0/24
 
+[ipset management]
+
+192.168.128.2
+
 [ipset myipset]
 
 192.168.0.1 
diff --git a/test/test-ipset1/tests b/test/test-ipset1/tests
index 0b6aeca..a910a2a 100644
--- a/test/test-ipset1/tests
+++ b/test/test-ipset1/tests
@@ -1,4 +1,3 @@
-
 # blacklisted
 { from => 'outside', to => 'host', source => '192.168.0.1', dest => '1.2.3.4', dport => 22, action => 'DROP' }
 # accept in myipset
@@ -15,3 +14,10 @@
 # reject dmzhosts if from myipset
 { from => 'outside', to => 'host', source => '172.16.0.10', dest => '10.10.10.1', dport => 22, action => 'REJECT' }
 { from => 'outside', to => 'host', source => '172.16.0.10', dest => '10.10.11.1', dport => 22, action => 'REJECT' }
+
+# management ipset
+{ from => 'outside', to => 'host', source => '192.168.128.1', dport => 8006, action => 'DROP' }
+{ from => 'outside', to => 'host', source => '192.168.128.1', dport => 22, action => 'DROP' }
+{ from => 'outside', to => 'host', source => '192.168.128.2', dport => 8006, action => 'ACCEPT' }
+{ from => 'outside', to => 'host', source => '192.168.128.2', dport => 22, action => 'ACCEPT' }
+
-- 
2.39.2