syncookie.sh - OpenGrok cross reference for /freebsd/tests/sys/netpfil/pf/syncookie.sh

Lines Matching +full:p +full:- +full:states
2 # SPDX-License-Identifier: BSD-2-Clause
35 	jexec $jail pfctl -si -v | grep -A 2 '^Syncookies' | grep active \
54 	jexec alcatraz /usr/sbin/inetd -p ${PWD}/inetd-alcatraz.pid \
59 	jexec alcatraz pfctl -e
66 	atf_check -s exit:0 -o ignore ping -c 1 192.0.2.1
68 	reply=$(echo foo | nc -N -w 5 192.0.2.1 7)
84 	rm -f ${PWD}/inetd-alcatraz.pid
103 	jexec alcatraz /usr/sbin/inetd -p ${PWD}/inetd-alcatraz.pid \
108 	jexec alcatraz pfctl -e
115 	atf_check -s exit:0 -o ignore ping6 -c 1 2001:db8::1
117 	reply=$(echo foo | nc -N -w 5 2001:db8::1 7)
159 	jexec srv /usr/sbin/inetd -p ${PWD}/inetd-alcatraz.pid \
163 	route add -net 198.51.100.0/24 192.0.2.1
165 	jexec fwd pfctl -e
172 	atf_check -s exit:0 -o ignore ping -c 1 198.51.100.2
174 	reply=$(echo foo | nc -N -w 5 198.51.100.2 7)
208 	jexec srv route -6 add default 2001:db8:1::1
209 	jexec srv /usr/sbin/inetd -p ${PWD}/inetd-alcatraz.pid \
213 	route -6 add -net 2001:db8:1::/64 2001:db8::1
215 	jexec fwd pfctl -e
222 	atf_check -s exit:0 -o ignore ping6 -c 1 2001:db8:1::2
224 	reply=$(echo foo | nc -N -w 5 2001:db8:1::2 7)
244 	atf_check -e ignore pfctl -e
245 	atf_check pfctl -f - <<__EOF__
254 	nc -l $addr $port >out &
256 	atf_check nc -N $addr $port < in
258 	atf_check -o file:in cat out
260 	atf_check -e ignore pfctl -d
338 	jexec alcatraz pfctl -e
345 	atf_check -s exit:0 -o ignore ping -c 1 192.0.2.1
347 	# Now syn flood to create many states
349 		--sendif ${epair}a \
350 		--to 192.0.2.2 \
351 		--count 20
353 	states=$(jexec alcatraz pfctl -ss | grep tcp)
354 	if [ -n "$states" ];
356 		echo "$states"
384 	jexec alcatraz pfctl -e
391 	atf_check -s exit:0 -o ignore ping6 -c 1 2001:db8::1
393 	# Now syn flood to create many states
395         --ip6 \
396 		--sendif ${epair}a \
397 		--to 2001:db8::2 \
398 		--count 20
400 	states=$(jexec alcatraz pfctl -ss | grep tcp)
401 	if [ -n "$states" ];
403 		echo "$states"
431 	jexec alcatraz pfctl -e
433 		"set limit states 100" \
439 	atf_check -s exit:0 -o ignore ping -c 1 192.0.2.1
448 	# Now syn flood to create many states
450 		--sendif ${epair}a \
451 		--to 192.0.2.2 \
452 		--count 100
462 	# about 10 states
463 	states=$(jexec alcatraz pfctl -ss | grep tcp | wc -l)
464 	if [ "$states" -gt 20 ];
466 		echo "$states"
467 		atf_fail "Found unexpected states"
489 	jexec alcatraz pfctl -e
491 		"set limit states 1" \
497 		"set limit states 326000000" \
511 	atf_set descr 'Test rapid port re-use'
524 	jexec alcatraz /usr/sbin/inetd -p ${PWD}/inetd-alcatraz.pid \
529 	jexec alcatraz pfctl -e
530 	jexec alcatraz pfctl -x loud
537 	atf_check -s exit:0 -o ignore ping -c 1 192.0.2.1
539 	reply=$(echo foo | nc -p 1234 -N -w 5 192.0.2.1 7)
545 	# We can't re-use the source IP/port combo quickly enough, so we're
550 	atf_check -s exit:0 -o ignore jexec singsing ping -c 1 192.0.2.1
552 	reply=$(echo bar | jexec singsing nc -p 1234 -N -w 5 192.0.2.1 7)