Michael Rash
7f12fc72d1
[test suite] more NAT DNS coverage
2016-05-28 05:06:07 -07:00
Michael Rash
8514061681
[test suite] minor removal of comments
2016-05-28 04:41:01 -07:00
Michael Rash
3a10ccff4d
[test suite] NAT DNS test coverage fix
2016-05-28 04:39:04 -07:00
Michael Rash
8366e118e2
[server] negative testing for ENABLE_NAT_DNS
2016-05-27 23:33:13 -07:00
Michael Rash
6e54e9452a
[test suite] add ENABLE_RULE_PREPEND test
2016-05-26 19:21:07 -07:00
Michael Rash
231cca538d
[test suite] add missing config files for HMAC SHA3_256 tests
2016-05-21 18:04:00 -07:00
Michael Rash
09fcad0f04
[test suite] add HMAC_SHA3_512 test
2016-05-20 18:45:20 -07:00
Jonathan Bennett
c6e95820a4
Add tests for include_keys
2016-05-05 13:26:35 -05:00
Michael Rash
9d92f65a03
[test suite] add test for X-Fowarded-For header
2016-04-16 07:40:24 -07:00
Michael Rash
06e42a3cfa
[test suite] first test for include_keys functionality
2016-02-21 11:50:41 -08:00
Michael Rash
98e79396ce
[test suite] start on --access-folder include dir test
2015-12-13 02:24:30 -08:00
Michael Rash
b305f67ca5
[test suite] start on %include_folder tests, make sure at least one valid access.conf stanza has been parsed
2015-12-12 20:39:37 -08:00
Michael Rash
ba3d16c5e3
[test suite] complete cycle test from %include derived access stanza
2015-12-12 11:19:14 -08:00
Michael Rash
7757929624
[test suite] multi-include non-recursive access.conf test
2015-12-12 06:23:16 -08:00
Michael Rash
5b0cfb16a0
[test suite] add access.conf %include recursion limit test
2015-12-10 15:31:18 -08:00
Michael Rash
ae1e804ea1
[test suite] add test for access.conf include directive
2015-12-08 19:51:51 -08:00
Michael Rash
988075b52b
[server] bug fix to honor client timeout SPA messages in --nat-local mode, fixes #173
2015-12-04 19:36:51 -08:00
Michael Rash
8c7a007a4a
[test suite] differentiate TIMEOUT vs. CLIENT_TIMEOUT values in command open close cycles
2015-11-17 22:41:22 -08:00
Michael Rash
f6829fe527
[test suite] added command cycle close NONE test
2015-11-17 22:08:58 -08:00
Michael Rash
72d6a0c018
[test suite] add multi-cycle open/close command tests
2015-10-26 13:02:51 -07:00
Michael Rash
7c476a747d
[test suite] add hmac_cmd_open_close_cycle_access5.conf file
2015-10-19 20:24:34 -04:00
Michael Rash
3a591fbf49
[test suite] add hmac_cmd_open_close_cycle_access4.conf file
2015-10-18 09:48:30 -07:00
Michael Rash
7a09daba4c
[test suite] more command cycle tests (multiple substitution vars)
2015-10-18 09:28:48 -07:00
Michael Rash
5597730e27
[test suite] added open/close file tests
2015-10-18 09:13:49 -07:00
Michael Rash
d67fbde992
[server] start on command open/close cycle support (issue #117 )
2015-10-13 18:00:07 -07:00
Michael Rash
89b2e8f477
[server] interface goes down will cause fwknopd to exit
...
By default, fwknopd will now exit if the interface that it is
sniffing goes down (patch contributed by Github user 'sgh7'). If this
happens, it is expected that the native process monitoring feature in
things like systemd or upstart will restart fwknopd. However, if fwknopd
is not being monitored by systemd, upstart, or anything else, this
behavior can be disabled with the EXIT_AT_INTF_DOWN variable in the
fwknopd.conf file. If disabled, fwknopd will try to recover when a
downed interface comes back up.
2015-07-18 13:11:25 -07:00
Michael Rash
4d3c472116
[test suite] add Rijndael+HMAC test for F-Droid Fwknop2 client written by Jonathan Bennett
2015-06-16 18:32:19 -07:00
Michael Rash
6bdfa95067
[server / test suite] cleaner SNAT MASQUERADE support
2015-04-22 00:58:35 -07:00
Michael Rash
6467b922d5
[test suite] additional FORWARD_ALL tests
2015-04-21 03:30:32 -07:00
Michael Rash
cc765a23db
[test suite] minor FORCE_NAT config tweak
2015-04-19 12:22:55 -07:00
Michael Rash
68db4b77a5
[server] allow FORWARD_ALL to control whether FORCE_NAT is required
2015-04-19 07:11:10 -07:00
Michael Rash
f06c6e3b9c
[test suite] allow default FORCE_NAT 0.0.0.0 0 to apply
2015-04-18 05:37:31 -07:00
Michael Rash
86cdc90f4a
[test suite] add open_ports_force_masq_access.conf file
2015-04-12 15:47:41 -07:00
Michael Rash
0fa42ae117
[server] allow DISABLE_DNAT to not require FORCE_NAT
2015-04-07 16:34:49 -07:00
Michael Rash
37c9f38565
[test suite] FORCE_SNAT requires FORCE_NAT test
2015-04-06 21:20:31 -04:00
Michael Rash
8e6db3a5da
[server] extend FORWARD_ALL to apply to NAT operations
...
This is a significant commit to allow all ports and protocols to be
NAT'd in conjunction with FORWARD ACCEPT rules. This commit is in
support of 6b7a3bbdae
2015-04-06 20:04:33 -04:00
Michael Rash
60d982a103
[test suite] added GPG 4096-bit key combination tests
2015-03-28 07:54:30 -04:00
Michael Rash
0f86406afb
[test suite] added gpg subkey signing test
2015-03-26 22:01:02 -04:00
Michael Rash
91a4e82f23
[test suite] added 4096-bit signing key test
2015-03-24 22:38:41 -04:00
Michael Rash
59d0ef0b17
[test suite] minor file rename
2015-03-24 22:03:21 -04:00
Michael Rash
1594194e73
[test suite] added new gpg keyrings for large key tests (4096 bits)
2015-03-24 22:01:55 -04:00
Michael Rash
08bc2aa603
[test suite] rely exclusively on tarball for gpg keyrings
2015-03-23 17:55:59 -07:00
Michael Rash
7a9a430f24
[test suite] additional DESTINATION accept/filter tests
2014-11-30 22:17:51 -05:00
Michael Rash
cf84f016a3
[test suite] add complete cycle DESTINATION test
2014-11-30 21:37:42 -05:00
Grant Pannell
624872ef48
Add DESTINATION access.conf directive and ENABLE_DESTINATION_RULE fwknopd.conf directive
2014-11-29 15:05:06 +10:30
Michael Rash
8872e50818
[test suite] use digest tracking override for ALF fwknopd fuzzing
2014-11-25 15:04:30 -05:00
Michael Rash
4880243902
[test suite] added invalid_firewd_input_chain_* files
2014-10-28 21:56:19 -04:00
Michael Rash
58d47cb385
[test suite] additional code coverage for a few areas
2014-10-24 20:39:40 -04:00
Michael Rash
22161af075
[test suite] add ipt_local_nat_fwknopd.conf
2014-10-23 08:39:42 -04:00
Michael Rash
b8f1cf6c6c
make sure test suite conf files are included in Makefile.am
2014-10-21 22:49:03 -04:00
