[prev in list] [next in list] [prev in thread] [next in thread] 

List:       wireguard
Subject:    [PATCH v5 11/11] tests: add test for transit-net
From:       Julian Orth <ju.orth () gmail ! com>
Date:       2018-12-15 16:56:13
Message-ID: 20181215165613.5486-12-ju.orth () gmail ! com
[Download RAW message or body]

---
 src/tests/netns.sh | 40 ++++++++++++++++++++++++++++++++++++++++
 1 file changed, 40 insertions(+)

diff --git a/src/tests/netns.sh b/src/tests/netns.sh
index 568612c..4cc6b44 100755
--- a/src/tests/netns.sh
+++ b/src/tests/netns.sh
@@ -222,6 +222,46 @@ n1 wg set wg0 peer "$more_specific_key" remove
 ip1 link del wg0
 ip2 link del wg0
 
+# Test using transit namespace. We now change the topology to this with \
transit-netns of $ns1 wg0 = $ns0 +# \
┌──────────────────────┐    \
┌───────────────────────┐     \
┌────────────────────────────────────────┐
 +# │    $ns1 namespace    │    │     $ns0 namespace    │     │             \
$ns2 namespace             │ +# │                      │    │                 \
│     │                                        │ +# │  ┌─────┐  \
│    │ ┌──────┐              │     │  ┌─────┐   \
┌─────┐            │ +# │  │ wg0 │             │    │ \
│vethrs│──────────────┼─────┼──│veths│────────────│ \
wg0 │            │ +# │  ├─────┴──────────┐ \
│    │ ├──────┴────────────┐ │     \
│  ├─────┴──────────┐ \
├─────┴──────────┐ │ +# │  \
│192.168.241.1/24│  │    │ │10.0.0.1/24        │ │     │  \
│10.0.0.100/24   │ │192.168.241.2/24│ │ +# │  │fd00::1/24      │  │ \
│ │SNAT:192.168.1.0/24│ │     │  │                │ │fd00::2/24      \
│ │ +# │  └────────────────┘  │    │ \
└───────────────────┘ │     │  \
└────────────────┘ \
└────────────────┘ │ +# \
└──────────────────────┘    \
└───────────────────────┘     \
└────────────────────────────────────────┘
 +
+ip1 link add dev wg0 type wireguard
+ip2 link add dev wg0 type wireguard
+configure_peers
+n1 wg set wg0 transit-netns /run/netns/$netns0
+
+ip0 link add vethrs type veth peer name veths
+ip0 link set veths netns $netns2
+ip0 link set vethrs up
+ip0 addr add 10.0.0.1/24 dev vethrs
+ip2 addr add 10.0.0.100/24 dev veths
+ip1 route add default dev wg0
+ip2 link set veths up
+waitiface $netns0 vethrs
+waitiface $netns2 veths
+
+n1 wg set wg0 peer "$pub2" endpoint 10.0.0.100:2 persistent-keepalive 1
+n1 ping -W 1 -c 1 192.168.241.2
+n2 ping -W 1 -c 1 192.168.241.1
+[[ $(n2 wg show wg0 endpoints) == "$pub1	10.0.0.1:1" ]]
+# Demonstrate n2 can still send packets to n1, since persistent-keepalive will \
prevent connection tracking entry from expiring (to see entries: `n0 conntrack -L`). \
+pp sleep 3 +n2 ping -W 1 -c 1 192.168.241.1
+
+ip0 link del vethrs
+
+ip1 link del wg0
+ip2 link del wg0
+
 # Test using NAT. We now change the topology to this:
 # ┌────────────────────────────────────────┐ \
┌────────────────────────────────────────────────┐ \
┌────────────────────────────────────────┐
  # │             $ns1 namespace             │    │                 $ns0 \
                namespace                 │     │             $ns2 namespace      \
                │
-- 
2.19.2

_______________________________________________
WireGuard mailing list
WireGuard@lists.zx2c4.com
https://lists.zx2c4.com/mailman/listinfo/wireguard


[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic