public
/
nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Merge pull request #94369 from Ma27/vrf-tcp-test 

nixos/systemd-networkd-vrf: implement working TCP test on a 5.x kernel
This commit is contained in:
Maximilian Bosch 2020-08-01 22:54:31 +02:00 committed by GitHub
parent 19f5bb668f 37e3cadb8b
commit 029e93391e
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 10 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

22
nixos/tests/systemd-networkd-vrf.nix
View File

@ -194,18 +194,16 @@ in {
client.succeed("ping -c5 192.168.1.2") client.succeed("ping -c5 192.168.1.2")
client.succeed("ping -c5 192.168.2.3") client.succeed("ping -c5 192.168.2.3")
# Test whether SSH through a VRF IP is possible. # Test whether TCP through a VRF IP is possible.
# (Note: this seems to be an issue on Linux 5.x, so I decided to add this to with subtest("tcp traffic through vrf works"):
# ensure that we catch this when updating the default kernel). node1.wait_for_open_port(22)
# with subtest("tcp traffic through vrf works"): client.succeed(
# node1.wait_for_open_port(22) "cat ${snakeOilPrivateKey} > privkey.snakeoil"
# client.succeed( )
# "cat ${snakeOilPrivateKey} > privkey.snakeoil" client.succeed("chmod 600 privkey.snakeoil")
# ) client.succeed(
# client.succeed("chmod 600 privkey.snakeoil") "ulimit -l 2048; ip vrf exec vrf1 ssh -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -i privkey.snakeoil root@192.168.1.2 true"
# client.succeed( )
# "ssh -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -i privkey.snakeoil root@192.168.1.2 true"
# )
# Only configured routes through the VRF from the main routing table should # Only configured routes through the VRF from the main routing table should
# work. Additional IPs are only reachable when binding to the vrf interface. # work. Additional IPs are only reachable when binding to the vrf interface.