diff options
Diffstat (limited to 'test/integration/targets/vyos_firewall_interfaces')
24 files changed, 0 insertions, 1232 deletions
diff --git a/test/integration/targets/vyos_firewall_interfaces/1 b/test/integration/targets/vyos_firewall_interfaces/1 deleted file mode 100644 index 70ae90f3e6..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/1 +++ /dev/null @@ -1,120 +0,0 @@ ---- -merged: - before: [] - - - commands: - - "set interfaces ethernet eth1 firewall in name 'INBOUND'" - - "set interfaces ethernet eth1 firewall out name 'OUTBOUND'" - - "set interfaces ethernet eth1 firewall local name 'LOCAL'" - - "set interfaces ethernet eth1 firewall local ipv6-name 'V6-LOCAL'" - - "set interfaces ethernet eth3 firewall in name 'INBOUND'" - - "set interfaces ethernet eth3 firewall out name 'OUTBOUND'" - - "set interfaces ethernet eth3 firewall local name 'LOCAL'" - - "set interfaces ethernet eth3 firewall local ipv6-name 'V6-LOCAL'" - - after: - - name: 'eth1' - access_rules: - - afi: 'ipv4' - rules: - - name: 'INBOUND' - direction: 'in' - - name: 'OUBOUND' - direction: 'out' - - afi: 'ipv6' - rules: - - name: 'V6-LOCAL' - direction: 'local' - -populate: - - name: 'eth1' - access_rules: - - afi: 'ipv4' - rules: - - name: 'INBOUND' - direction: 'in' - - name: 'OUBOUND' - direction: 'out' - - afi: 'ipv6' - rules: - - name: 'LOCAL' - direction: 'local' - -replaced: - commands: - - "delete service lldp interface eth2 location" - - "set service lldp interface eth2 'disable'" - - "set service lldp interface eth2 location civic-based country-code 'US'" - - "set service lldp interface eth2 location civic-based ca-type 0 ca-value 'ENGLISH'" - - "delete service lldp interface eth1 location" - - "set service lldp interface eth1 'disable'" - - "set service lldp interface eth1 location coordinate-based latitude '33.524449N'" - - "set service lldp interface eth1 location coordinate-based altitude '2200'" - - "set service lldp interface eth1 location coordinate-based datum 'WGS84'" - - "set service lldp interface eth1 location coordinate-based longitude '222.267255W'" - - after: - - name: 'eth2' - enable: false - location: - civic_based: - country_code: 'US' - ca_info: - - ca_type: 0 - ca_value: 'ENGLISH' - - - name: 'eth1' - enable: false - location: - coordinate_based: - altitude: 2200 - datum: 'WGS84' - longitude: '222.267255W' - latitude: '33.524449N' - -populate_intf: - - name: 'eth2' - enable: false - location: - civic_based: - country_code: 'US' - ca_info: - - ca_type: 0 - ca_value: 'ENGLISH' - -overridden: - commands: - - "delete service lldp interface eth2 location" - - "delete service lldp interface eth2 'disable'" - - "set service lldp interface eth2 location elin '0000000911'" - - after: - - name: 'eth2' - location: - elin: 0000000911 - -deleted: - commands: - - "delete service lldp interface eth1" - - "delete service lldp interface eth2" - - after: [] - -round_trip: - after: - - name: 'eth1' - location: - civic_based: - country_code: 'US' - ca_info: - - ca_type: 0 - ca_value: 'ENGLISH' - - - name: 'eth2' - location: - coordinate_based: - altitude: 2200 - datum: 'WGS84' - longitude: '222.267255W' - latitude: '33.524449N' diff --git a/test/integration/targets/vyos_firewall_interfaces/defaults/main.yaml b/test/integration/targets/vyos_firewall_interfaces/defaults/main.yaml deleted file mode 100644 index 164afead28..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/defaults/main.yaml +++ /dev/null @@ -1,3 +0,0 @@ ---- -testcase: "[^_].*" -test_items: [] diff --git a/test/integration/targets/vyos_firewall_interfaces/meta/main.yaml b/test/integration/targets/vyos_firewall_interfaces/meta/main.yaml deleted file mode 100644 index 7413320e48..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/meta/main.yaml +++ /dev/null @@ -1,3 +0,0 @@ ---- -dependencies: - - prepare_vyos_tests diff --git a/test/integration/targets/vyos_firewall_interfaces/tasks/cli.yaml b/test/integration/targets/vyos_firewall_interfaces/tasks/cli.yaml deleted file mode 100644 index 655e51ee63..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/tasks/cli.yaml +++ /dev/null @@ -1,19 +0,0 @@ ---- -- name: Collect all cli test cases - find: - paths: "{{ role_path }}/tests/cli" - patterns: "{{ testcase }}.yaml" - use_regex: true - register: test_cases - delegate_to: localhost - -- name: Set test_items - set_fact: test_items="{{ test_cases.files | map(attribute='path') | list }}" - -- name: Run test case (connection=network_cli) - include: "{{ test_case_to_run }}" - vars: - ansible_connection: network_cli - with_items: "{{ test_items }}" - loop_control: - loop_var: test_case_to_run diff --git a/test/integration/targets/vyos_firewall_interfaces/tasks/main.yaml b/test/integration/targets/vyos_firewall_interfaces/tasks/main.yaml deleted file mode 100644 index d4cf26fc4a..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/tasks/main.yaml +++ /dev/null @@ -1,2 +0,0 @@ ---- -- {include: cli.yaml, tags: ['cli']} diff --git a/test/integration/targets/vyos_firewall_interfaces/tests/cli/_parsed_config.cfg b/test/integration/targets/vyos_firewall_interfaces/tests/cli/_parsed_config.cfg deleted file mode 100644 index 54696e8d4e..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/tests/cli/_parsed_config.cfg +++ /dev/null @@ -1,10 +0,0 @@ -set interfaces ethernet eth1 firewall in name 'INBOUND' -set interfaces ethernet eth1 firewall out name 'OUTBOUND' -set interfaces ethernet eth1 firewall local name 'LOCAL' -set interfaces ethernet eth1 firewall local ipv6-name 'V6-LOCAL' -set interfaces ethernet eth2 firewall in name 'INBOUND' -set interfaces ethernet eth2 firewall out name 'OUTBOUND' -set interfaces ethernet eth2 firewall local name 'LOCAL' -set interfaces ethernet eth2 firewall local ipv6-name 'V6-LOCAL' -set interfaces ethernet eth0 - diff --git a/test/integration/targets/vyos_firewall_interfaces/tests/cli/_populate.yaml b/test/integration/targets/vyos_firewall_interfaces/tests/cli/_populate.yaml deleted file mode 100644 index 99abf94d5d..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/tests/cli/_populate.yaml +++ /dev/null @@ -1,15 +0,0 @@ ---- -- name: Setup - cli_config: - config: "{{ lines }}" - vars: - lines: | - set interfaces ethernet eth1 firewall in name 'INBOUND' - set interfaces ethernet eth1 firewall out name 'OUTBOUND' - set interfaces ethernet eth1 firewall local name 'LOCAL' - set interfaces ethernet eth1 firewall local ipv6-name 'V6-LOCAL' - set interfaces ethernet eth2 firewall in name 'INBOUND' - set interfaces ethernet eth2 firewall out name 'OUTBOUND' - set interfaces ethernet eth2 firewall local name 'LOCAL' - set interfaces ethernet eth2 firewall local ipv6-name 'V6-LOCAL' - diff --git a/test/integration/targets/vyos_firewall_interfaces/tests/cli/_populate_rule_sets.yaml b/test/integration/targets/vyos_firewall_interfaces/tests/cli/_populate_rule_sets.yaml deleted file mode 100644 index e5d15fe008..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/tests/cli/_populate_rule_sets.yaml +++ /dev/null @@ -1,10 +0,0 @@ ---- -- name: Setup - cli_config: - config: "{{ lines }}" - vars: - lines: | - set firewall name 'INBOUND' - set firewall name 'OUTBOUND' - set firewall name 'LOCAL' - set firewall ipv6-name 'V6-LOCAL' diff --git a/test/integration/targets/vyos_firewall_interfaces/tests/cli/_remove_config.yaml b/test/integration/targets/vyos_firewall_interfaces/tests/cli/_remove_config.yaml deleted file mode 100644 index 843ce31234..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/tests/cli/_remove_config.yaml +++ /dev/null @@ -1,8 +0,0 @@ ---- -- name: Remove Config - cli_config: - config: "{{ lines }}" - vars: - lines: | - delete interfaces ethernet eth1 firewall - delete interfaces ethernet eth2 firewall diff --git a/test/integration/targets/vyos_firewall_interfaces/tests/cli/_remove_firewall_config.yaml b/test/integration/targets/vyos_firewall_interfaces/tests/cli/_remove_firewall_config.yaml deleted file mode 100644 index 7755d9fe7f..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/tests/cli/_remove_firewall_config.yaml +++ /dev/null @@ -1,10 +0,0 @@ ---- -- name: Remove Config - cli_config: - config: "{{ lines }}" - vars: - lines: | - delete firewall name INBOUND - delete firewall name OUTBOUND - delete firewall name LOCAL - delete firewall ipv6-name V6-LOCAL diff --git a/test/integration/targets/vyos_firewall_interfaces/tests/cli/deleted.yaml b/test/integration/targets/vyos_firewall_interfaces/tests/cli/deleted.yaml deleted file mode 100644 index c9c464ab3c..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/tests/cli/deleted.yaml +++ /dev/null @@ -1,50 +0,0 @@ ---- -- debug: - msg: "Start vyos_firewall_interfaces deleted integration tests ansible_connection={{ ansible_connection }}" - -- include_tasks: _populate_rule_sets.yaml - -- include_tasks: _populate.yaml - -- block: - - name: Delete attributes of given firewall rules. - vyos_firewall_interfaces: &deleted - config: - - name: 'eth1' - - name: 'eth2' - state: deleted - register: result - - - name: Assert that the before dicts were correctly generated - assert: - that: - - "{{ populate | symmetric_difference(result['before']) |length == 0 }}" - - - name: Assert that the correct set of commands were generated - assert: - that: - - "{{ deleted['commands'] | symmetric_difference(result['commands']) |length == 0 }}" - - - name: Assert that the after dicts were correctly generated - assert: - that: - - "{{ deleted['after'] | symmetric_difference(result['after']) |length == 0 }}" - - - name: Delete attributes of given interfaces (IDEMPOTENT) - vyos_firewall_interfaces: *deleted - register: result - - - name: Assert that the previous task was idempotent - assert: - that: - - "result.changed == false" - - "result.commands|length == 0" - - - name: Assert that the before dicts were correctly generated - assert: - that: - - "{{ deleted['after'] | symmetric_difference(result['before']) |length == 0 }}" - always: - - include_tasks: _remove_config.yaml - - - include_tasks: _remove_firewall_config.yaml diff --git a/test/integration/targets/vyos_firewall_interfaces/tests/cli/deleted_afi.yaml b/test/integration/targets/vyos_firewall_interfaces/tests/cli/deleted_afi.yaml deleted file mode 100644 index 175a59f83b..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/tests/cli/deleted_afi.yaml +++ /dev/null @@ -1,56 +0,0 @@ ---- -- debug: - msg: "Start vyos_firewall_interfaces deleted integration tests ansible_connection={{ ansible_connection }}" - -- include_tasks: _populate_rule_sets.yaml - -- include_tasks: _populate.yaml - -- block: - - name: Delete firewall interfaces based on IP address type provided. - vyos_firewall_interfaces: &deleted_afi - config: - - name: 'eth1' - access_rules: - - afi: 'ipv4' - - afi: 'ipv6' - - name: 'eth2' - access_rules: - - afi: 'ipv4' - - afi: 'ipv6' - state: deleted - register: result - - - name: Assert that the before dicts were correctly generated - assert: - that: - - "{{ populate | symmetric_difference(result['before']) |length == 0 }}" - - - name: Assert that the correct set of commands were generated - assert: - that: - - "{{ deleted_afi['commands'] | symmetric_difference(result['commands']) |length == 0 }}" - - - name: Assert that the after dicts were correctly generated - assert: - that: - - "{{ deleted_afi['after'] | symmetric_difference(result['after']) |length == 0 }}" - - - name: Delete attributes of given interfaces (IDEMPOTENT) - vyos_firewall_interfaces: *deleted_afi - register: result - - - name: Assert that the previous task was idempotent - assert: - that: - - "result.changed == false" - - "result.commands|length == 0" - - - name: Assert that the before dicts were correctly generated - assert: - that: - - "{{ deleted_afi['after'] | symmetric_difference(result['before']) |length == 0 }}" - always: - - include_tasks: _remove_config.yaml - - - include_tasks: _remove_firewall_config.yaml diff --git a/test/integration/targets/vyos_firewall_interfaces/tests/cli/deleted_all.yaml b/test/integration/targets/vyos_firewall_interfaces/tests/cli/deleted_all.yaml deleted file mode 100644 index 38495d4839..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/tests/cli/deleted_all.yaml +++ /dev/null @@ -1,48 +0,0 @@ ---- -- debug: - msg: "Start vyos_firewall_interfaces deleted integration tests ansible_connection={{ ansible_connection }}" - -- include_tasks: _populate_rule_sets.yaml - -- include_tasks: _populate.yaml - -- block: - - name: Delete all the firewall interfaces. - vyos_firewall_interfaces: &deleted_all - config: - state: deleted - register: result - - - name: Assert that the before dicts were correctly generated - assert: - that: - - "{{ populate | symmetric_difference(result['before']) |length == 0 }}" - - - name: Assert that the correct set of commands were generated - assert: - that: - - "{{ deleted['commands'] | symmetric_difference(result['commands']) |length == 0 }}" - - - name: Assert that the after dicts were correctly generated - assert: - that: - - "{{ deleted['after'] | symmetric_difference(result['after']) |length == 0 }}" - - - name: Delete attributes of given interfaces (IDEMPOTENT) - vyos_firewall_interfaces: *deleted_all - register: result - - - name: Assert that the previous task was idempotent - assert: - that: - - "result.changed == false" - - "result.commands|length == 0" - - - name: Assert that the before dicts were correctly generated - assert: - that: - - "{{ deleted['after'] | symmetric_difference(result['before']) |length == 0 }}" - always: - - include_tasks: _remove_config.yaml - - - include_tasks: _remove_firewall_config.yaml diff --git a/test/integration/targets/vyos_firewall_interfaces/tests/cli/deleted_single.yaml b/test/integration/targets/vyos_firewall_interfaces/tests/cli/deleted_single.yaml deleted file mode 100644 index 70c58fc255..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/tests/cli/deleted_single.yaml +++ /dev/null @@ -1,54 +0,0 @@ ---- -- debug: - msg: "Start vyos_firewall_interfaces deleted integration tests ansible_connection={{ ansible_connection }}" - -- include_tasks: _populate_rule_sets.yaml - -- include_tasks: _populate.yaml - -- block: - - name: Delete firewall interface. - vyos_firewall_interfaces: &deleted_single - config: - - name: 'eth1' - access_rules: - - afi: 'ipv4' - rules: - - direction: 'in' - name: 'INBOUND' - state: deleted - register: result - - - name: Assert that the before dicts were correctly generated - assert: - that: - - "{{ populate | symmetric_difference(result['before']) |length == 0 }}" - - - name: Assert that the correct set of commands were generated - assert: - that: - - "{{ deleted_single['commands'] | symmetric_difference(result['commands']) |length == 0 }}" - - - name: Assert that the after dicts were correctly generated - assert: - that: - - "{{ deleted_single['after'] | symmetric_difference(result['after']) |length == 0 }}" - - - name: Delete attributes of given interfaces (IDEMPOTENT) - vyos_firewall_interfaces: *deleted_single - register: result - - - name: Assert that the previous task was idempotent - assert: - that: - - "result.changed == false" - - "result.commands|length == 0" - - - name: Assert that the before dicts were correctly generated - assert: - that: - - "{{ deleted_single['after'] | symmetric_difference(result['before']) |length == 0 }}" - always: - - include_tasks: _remove_config.yaml - - - include_tasks: _remove_firewall_config.yaml diff --git a/test/integration/targets/vyos_firewall_interfaces/tests/cli/empty_config.yaml b/test/integration/targets/vyos_firewall_interfaces/tests/cli/empty_config.yaml deleted file mode 100644 index 0881d5f8bc..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/tests/cli/empty_config.yaml +++ /dev/null @@ -1,58 +0,0 @@ ---- -- debug: - msg: "START vyos_firewall_interfaces empty_config integration tests on connection={{ ansible_connection }}" - -- name: Merged with empty config should give appropriate error message - vyos_firewall_interfaces: - config: - state: merged - register: result - ignore_errors: true - -- assert: - that: - - result.msg == 'value of config parameter must not be empty for state merged' - -- name: Replaced with empty config should give appropriate error message - vyos_firewall_interfaces: - config: - state: replaced - register: result - ignore_errors: true - -- assert: - that: - - result.msg == 'value of config parameter must not be empty for state replaced' - -- name: Overridden with empty config should give appropriate error message - vyos_firewall_interfaces: - config: - state: overridden - register: result - ignore_errors: true - -- assert: - that: - - result.msg == 'value of config parameter must not be empty for state overridden' - -- name: Parsed with empty running_config should give appropriate error message - vyos_firewall_interfaces: - running_config: - state: parsed - register: result - ignore_errors: true - -- assert: - that: - - result.msg == 'value of running_config parameter must not be empty for state parsed' - -- name: Rendered with empty config should give appropriate error message - vyos_firewall_interfaces: - config: - state: rendered - register: result - ignore_errors: true - -- assert: - that: - - result.msg == 'value of config parameter must not be empty for state rendered' diff --git a/test/integration/targets/vyos_firewall_interfaces/tests/cli/gathered.yaml b/test/integration/targets/vyos_firewall_interfaces/tests/cli/gathered.yaml deleted file mode 100644 index 2536476b8f..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/tests/cli/gathered.yaml +++ /dev/null @@ -1,37 +0,0 @@ ---- -- debug: - msg: "START vyos_firewall_interfaces gathered integration tests on connection={{ ansible_connection }}" - -- include_tasks: _remove_config.yaml - -- include_tasks: _remove_firewall_config.yaml - -- include_tasks: _populate_rule_sets.yaml - -- include_tasks: _populate.yaml - -- block: - - name: Merge the provided configuration with the exisiting running configuration - vyos_firewall_interfaces: &gathered - config: - state: gathered - register: result - - - name: Assert that gathered dicts was correctly generated - assert: - that: - - "{{ populate | symmetric_difference(result['gathered']) |length == 0 }}" - - - name: Gather the existing running configuration (IDEMPOTENT) - vyos_firewall_interfaces: *gathered - register: result - - - name: Assert that the previous task was idempotent - assert: - that: - - "result['changed'] == false" - - always: - - include_tasks: _remove_config.yaml - - - include_tasks: _remove_firewall_config.yaml diff --git a/test/integration/targets/vyos_firewall_interfaces/tests/cli/merged.yaml b/test/integration/targets/vyos_firewall_interfaces/tests/cli/merged.yaml deleted file mode 100644 index fb0733809b..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/tests/cli/merged.yaml +++ /dev/null @@ -1,75 +0,0 @@ ---- -- debug: - msg: "START vyos_firewall_interfaces merged integration tests on connection={{ ansible_connection }}" - -- include_tasks: _populate_rule_sets.yaml - -- include_tasks: _remove_config.yaml - -- block: - - name: Merge the provided configuration with the exisiting running configuration - vyos_firewall_interfaces: &merged - config: - - name: 'eth1' - access_rules: - - afi: 'ipv4' - rules: - - direction: 'in' - name: 'INBOUND' - - direction: 'local' - name: 'LOCAL' - - direction: 'out' - name: 'OUTBOUND' - - afi: 'ipv6' - rules: - - direction: 'local' - name: 'V6-LOCAL' - - name: 'eth2' - access_rules: - - afi: 'ipv4' - rules: - - direction: 'in' - name: 'INBOUND' - - direction: 'local' - name: 'LOCAL' - - direction: 'out' - name: 'OUTBOUND' - - afi: 'ipv6' - rules: - - direction: 'local' - name: 'V6-LOCAL' - state: merged - register: result - - - name: Assert that before dicts were correctly generated - assert: - that: "{{ merged['before'] | symmetric_difference(result['before']) |length == 0 }}" - - - name: Assert that correct set of commands were generated - assert: - that: - - "{{ merged['commands'] | symmetric_difference(result['commands']) |length == 0 }}" - - - name: Assert that after dicts was correctly generated - assert: - that: - - "{{ merged['after'] | symmetric_difference(result['after']) |length == 0 }}" - - - name: Merge the provided configuration with the existing running configuration (IDEMPOTENT) - vyos_firewall_interfaces: *merged - register: result - - - name: Assert that the previous task was idempotent - assert: - that: - - "result['changed'] == false" - - - name: Assert that before dicts were correctly generated - assert: - that: - - "{{ merged['after'] | symmetric_difference(result['before']) |length == 0 }}" - - always: - - include_tasks: _remove_config.yaml - - - include_tasks: _remove_firewall_config.yaml diff --git a/test/integration/targets/vyos_firewall_interfaces/tests/cli/merged_edit.yaml b/test/integration/targets/vyos_firewall_interfaces/tests/cli/merged_edit.yaml deleted file mode 100644 index 1393a5b10d..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/tests/cli/merged_edit.yaml +++ /dev/null @@ -1,59 +0,0 @@ ---- -- debug: - msg: "START vyos_firewall_interfaces merged integration tests on connection={{ ansible_connection }}" - -- include_tasks: _remove_config.yaml - -- include_tasks: _remove_firewall_config.yaml - -- include_tasks: _populate_rule_sets.yaml - -- include_tasks: _populate.yaml - -- block: - - name: Merge the provided configuration with the exisiting running configuration - vyos_firewall_interfaces: &merged_edit - config: - - name: 'eth1' - access_rules: - - afi: 'ipv4' - rules: - - direction: 'in' - name: 'OUTBOUND' - - direction: 'out' - name: 'INBOUND' - state: merged - register: result - - - name: Assert that before dicts were correctly generated - assert: - that: "{{ populate | symmetric_difference(result['before']) |length == 0 }}" - - - name: Assert that correct set of commands were generated - assert: - that: - - "{{ merged_edit['commands'] | symmetric_difference(result['commands']) |length == 0 }}" - - - name: Assert that after dicts was correctly generated - assert: - that: - - "{{ merged_edit['after'] | symmetric_difference(result['after']) |length == 0 }}" - - - name: Merge the provided configuration with the existing running configuration (IDEMPOTENT) - vyos_firewall_interfaces: *merged_edit - register: result - - - name: Assert that the previous task was idempotent - assert: - that: - - "result['changed'] == false" - - - name: Assert that before dicts were correctly generated - assert: - that: - - "{{ merged_edit['after'] | symmetric_difference(result['before']) |length == 0 }}" - - always: - - include_tasks: _remove_config.yaml - - - include_tasks: _remove_firewall_config.yaml diff --git a/test/integration/targets/vyos_firewall_interfaces/tests/cli/overridden.yaml b/test/integration/targets/vyos_firewall_interfaces/tests/cli/overridden.yaml deleted file mode 100644 index daf3414518..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/tests/cli/overridden.yaml +++ /dev/null @@ -1,58 +0,0 @@ ---- -- debug: - msg: "START vyos_firewall_interfaces overridden integration tests on connection={{ ansible_connection }}" - -- include_tasks: _remove_config.yaml - -- include_tasks: _remove_firewall_config.yaml - -- include_tasks: _populate_rule_sets.yaml - -- include_tasks: _populate.yaml - -- block: - - name: Overrides all device configuration with provided configuration - vyos_firewall_interfaces: &overridden - config: - - name: 'eth2' - access_rules: - - afi: 'ipv4' - rules: - - name: 'INBOUND' - direction: 'out' - state: overridden - register: result - - - name: Assert that before dicts were correctly generated - assert: - that: - - "{{ populate | symmetric_difference(result['before']) |length == 0 }}" - - - name: Assert that correct commands were generated - assert: - that: - - "{{ overridden['commands'] | symmetric_difference(result['commands']) |length == 0 }}" - - - name: Assert that after dicts were correctly generated - assert: - that: - - "{{ overridden['after'] | symmetric_difference(result['after']) |length == 0 }}" - - - name: Overrides all device configuration with provided configurations (IDEMPOTENT) - vyos_firewall_interfaces: *overridden - register: result - - - name: Assert that the previous task was idempotent - assert: - that: - - "result['changed'] == false" - - - name: Assert that before dicts were correctly generated - assert: - that: - - "{{ overridden['after'] | symmetric_difference(result['before']) |length == 0 }}" - - always: - - include_tasks: _remove_config.yaml - - - include_tasks: _remove_firewall_config.yaml diff --git a/test/integration/targets/vyos_firewall_interfaces/tests/cli/parsed.yaml b/test/integration/targets/vyos_firewall_interfaces/tests/cli/parsed.yaml deleted file mode 100644 index 646af8b847..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/tests/cli/parsed.yaml +++ /dev/null @@ -1,44 +0,0 @@ ---- -- debug: - msg: "START vyos_firewall_interfaces parsed integration tests on connection={{ ansible_connection }}" - -- include_tasks: _remove_config.yaml - -- include_tasks: _remove_firewall_config.yaml - -- include_tasks: _populate_rule_sets.yaml - -- include_tasks: _populate.yaml - -- block: - - name: Gather firewall_interfaces facts - vyos_facts: - gather_subset: - - default - gather_network_resources: - - firewall_interfaces - register: firewall_interfaces_facts - - - name: Provide the running configuration for parsing (config to be parsed) - vyos_firewall_interfaces: &parsed - running_config: - "{{ lookup('file', '_parsed_config.cfg') }}" - state: parsed - register: result - - - name: Assert that correct parsing done - assert: - that: "{{ ansible_facts['network_resources']['firewall_interfaces'] | symmetric_difference(result['parsed']) |length == 0 }}" - - - name: Gather the existing running configuration (IDEMPOTENT) - vyos_firewall_interfaces: *parsed - register: result - - - name: Assert that the previous task was idempotent - assert: - that: - - "result['changed'] == false" - always: - - include_tasks: _remove_config.yaml - - - include_tasks: _remove_firewall_config.yaml diff --git a/test/integration/targets/vyos_firewall_interfaces/tests/cli/rendered.yaml b/test/integration/targets/vyos_firewall_interfaces/tests/cli/rendered.yaml deleted file mode 100644 index ff969ede61..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/tests/cli/rendered.yaml +++ /dev/null @@ -1,55 +0,0 @@ ---- -- debug: - msg: "START vyos_firewall_interfaces rendered integration tests on connection={{ ansible_connection }}" - -- block: - - name: Structure provided configuration into device specific commands - vyos_firewall_interfaces: &rendered - config: - - name: 'eth1' - access_rules: - - afi: 'ipv4' - rules: - - name: 'INBOUND' - direction: 'in' - - name: 'OUTBOUND' - direction: 'out' - - name: 'LOCAL' - direction: 'local' - - afi: 'ipv6' - rules: - - name: 'V6-LOCAL' - direction: 'local' - - name: 'eth2' - access_rules: - - afi: 'ipv4' - rules: - - name: 'INBOUND' - direction: 'in' - - name: 'OUTBOUND' - direction: 'out' - - name: 'LOCAL' - direction: 'local' - - afi: 'ipv6' - rules: - - name: 'V6-LOCAL' - direction: 'local' - state: rendered - register: result - - - name: Assert that correct set of commands were generated - assert: - that: - - "{{ rendered['commands'] | symmetric_difference(result['rendered']) |length == 0 }}" - - - name: Structure provided configuration into device specific commands (IDEMPOTENT) - vyos_firewall_interfaces: *rendered - register: result - - - name: Assert that the previous task was idempotent - assert: - that: - - "result['changed'] == false" - - always: - - include_tasks: _remove_config.yaml diff --git a/test/integration/targets/vyos_firewall_interfaces/tests/cli/replaced.yaml b/test/integration/targets/vyos_firewall_interfaces/tests/cli/replaced.yaml deleted file mode 100644 index cd349ae239..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/tests/cli/replaced.yaml +++ /dev/null @@ -1,68 +0,0 @@ ---- -- debug: - msg: "START vyos_firewall_interfaces replaced integration tests on connection={{ ansible_connection }}" - -- include_tasks: _remove_config.yaml - -- include_tasks: _remove_firewall_config.yaml - -- include_tasks: _populate_rule_sets.yaml - -- include_tasks: _populate.yaml - -- block: - - name: Replace device configurations of listed firewall rules with provided configurations - vyos_firewall_interfaces: &replaced - config: - - name: 'eth1' - access_rules: - - afi: 'ipv4' - rules: - - name: 'OUTBOUND' - direction: 'out' - - afi: 'ipv6' - rules: - - name: 'V6-LOCAL' - direction: 'local' - - name: 'eth2' - access_rules: - - afi: 'ipv4' - rules: - - name: 'INBOUND' - direction: 'in' - state: replaced - register: result - - - name: Assert that correct set of commands were generated - assert: - that: - - "{{ replaced['commands'] | symmetric_difference(result['commands']) |length == 0 }}" - - - name: Assert that before dicts are correctly generated - assert: - that: - - "{{ populate | symmetric_difference(result['before']) |length == 0 }}" - - - name: Assert that after dict is correctly generated - assert: - that: - - "{{ replaced['after'] | symmetric_difference(result['after']) |length == 0 }}" - - - name: Replace device configurations of listed firewall rules with provided configurarions (IDEMPOTENT) - vyos_firewall_interfaces: *replaced - register: result - - - name: Assert that task was idempotent - assert: - that: - - "result['changed'] == false" - - - name: Assert that before dict is correctly generated - assert: - that: - - "{{ replaced['after'] | symmetric_difference(result['before']) |length == 0 }}" - - always: - - include_tasks: _remove_config.yaml - - - include_tasks: _remove_firewall_config.yaml diff --git a/test/integration/targets/vyos_firewall_interfaces/tests/cli/rtt.yaml b/test/integration/targets/vyos_firewall_interfaces/tests/cli/rtt.yaml deleted file mode 100644 index 0d06069fb5..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/tests/cli/rtt.yaml +++ /dev/null @@ -1,76 +0,0 @@ ---- -- debug: - msg: "START vyos_firewall_interfaces round trip integration tests on connection={{ ansible_connection }}" - -- include_tasks: _remove_config.yaml - -- include_tasks: _remove_firewall_config.yaml - -- include_tasks: _populate_rule_sets.yaml - -- block: - - name: Apply the provided configuration (base config) - vyos_firewall_interfaces: - config: - - name: 'eth1' - access_rules: - - afi: 'ipv4' - rules: - - name: 'INBOUND' - direction: 'in' - - name: 'OUTBOUND' - direction: 'out' - - name: 'LOCAL' - direction: 'local' - - afi: 'ipv6' - rules: - - name: 'V6-LOCAL' - direction: 'local' - state: merged - register: base_config - - - name: Gather firewall_interfaces facts - vyos_facts: - gather_subset: - - default - gather_network_resources: - - firewall_interfaces - - - name: Apply the provided configuration (config to be reverted) - vyos_firewall_interfaces: - config: - - name: 'eth2' - access_rules: - - afi: 'ipv4' - rules: - - name: 'INBOUND' - direction: 'in' - - name: 'OUTBOUND' - direction: 'out' - - name: 'LOCAL' - direction: 'local' - - afi: 'ipv6' - rules: - - name: 'V6-LOCAL' - direction: 'local' - state: merged - register: result - - - name: Assert that changes were applied - assert: - that: "{{ round_trip['after'] | symmetric_difference(result['after']) |length == 0 }}" - - - name: Revert back to base config using facts round trip - vyos_firewall_interfaces: - config: "{{ ansible_facts['network_resources']['firewall_interfaces'] }}" - state: overridden - register: revert - - - name: Assert that config was reverted - assert: - that: "{{ base_config['after'] | symmetric_difference(revert['after']) |length == 0 }}" - - always: - - include_tasks: _remove_config.yaml - - - include_tasks: _remove_firewall_config.yaml diff --git a/test/integration/targets/vyos_firewall_interfaces/vars/main.yaml b/test/integration/targets/vyos_firewall_interfaces/vars/main.yaml deleted file mode 100644 index fa21a500fe..0000000000 --- a/test/integration/targets/vyos_firewall_interfaces/vars/main.yaml +++ /dev/null @@ -1,294 +0,0 @@ ---- -merged: - before: - - name: eth0 - - name: eth1 - - name: eth2 - - commands: - - "set interfaces ethernet eth1 firewall in name 'INBOUND'" - - "set interfaces ethernet eth1 firewall out name 'OUTBOUND'" - - "set interfaces ethernet eth1 firewall local name 'LOCAL'" - - "set interfaces ethernet eth1 firewall local ipv6-name 'V6-LOCAL'" - - "set interfaces ethernet eth2 firewall in name 'INBOUND'" - - "set interfaces ethernet eth2 firewall out name 'OUTBOUND'" - - "set interfaces ethernet eth2 firewall local name 'LOCAL'" - - "set interfaces ethernet eth2 firewall local ipv6-name 'V6-LOCAL'" - - after: - - name: eth0 - - access_rules: - - afi: ipv4 - rules: - - direction: in - name: INBOUND - - direction: local - name: LOCAL - - direction: out - name: OUTBOUND - - afi: ipv6 - rules: - - direction: local - name: V6-LOCAL - name: eth1 - - access_rules: - - afi: ipv4 - rules: - - direction: in - name: INBOUND - - direction: local - name: LOCAL - - direction: out - name: OUTBOUND - - afi: ipv6 - rules: - - direction: local - name: V6-LOCAL - name: eth2 - -populate: - - name: eth0 - - access_rules: - - afi: ipv4 - rules: - - direction: in - name: INBOUND - - direction: local - name: LOCAL - - direction: out - name: OUTBOUND - - afi: ipv6 - rules: - - direction: local - name: V6-LOCAL - name: eth1 - - access_rules: - - afi: ipv4 - rules: - - direction: in - name: INBOUND - - direction: local - name: LOCAL - - direction: out - name: OUTBOUND - - afi: ipv6 - rules: - - direction: local - name: V6-LOCAL - name: eth2 - -merged_edit: - commands: - - "set interfaces ethernet eth1 firewall in name 'OUTBOUND'" - - "set interfaces ethernet eth1 firewall out name 'INBOUND'" - - after: - - name: eth0 - - access_rules: - - afi: ipv4 - rules: - - direction: in - name: OUTBOUND - - direction: local - name: LOCAL - - direction: out - name: INBOUND - - afi: ipv6 - rules: - - direction: local - name: V6-LOCAL - name: eth1 - - access_rules: - - afi: ipv4 - rules: - - direction: in - name: INBOUND - - direction: local - name: LOCAL - - direction: out - name: OUTBOUND - - afi: ipv6 - rules: - - direction: local - name: V6-LOCAL - name: eth2 -replaced: - commands: - - "delete interfaces ethernet eth2 firewall out name" - - "delete interfaces ethernet eth2 firewall local name" - - "delete interfaces ethernet eth2 firewall local ipv6-name" - - "delete interfaces ethernet eth1 firewall local name" - - "delete interfaces ethernet eth1 firewall in name" - - after: - - name: eth0 - - access_rules: - - afi: ipv4 - rules: - - direction: out - name: OUTBOUND - - afi: ipv6 - rules: - - direction: local - name: V6-LOCAL - name: eth1 - - access_rules: - - afi: ipv4 - rules: - - direction: in - name: INBOUND - name: eth2 - -overridden: - before: - - access_rules: - - afi: ipv4 - rules: - - direction: in - name: INBOUND - - direction: local - name: LOCAL - - direction: out - name: OUTBOUND - - afi: ipv6 - rules: - - direction: local - name: V6-LOCAL - name: eth1 - - access_rules: - - afi: ipv4 - rules: - - name: INBOUND - direction: in - - name: LOCAL - direction: local - - name: OUTBOUND - direction: out - - afi: ipv6 - rules: - - name: V6-LOCAL - direction: local - name: eth2 - commands: - - "delete interfaces ethernet eth1 firewall" - - "delete interfaces ethernet eth2 firewall in name" - - "delete interfaces ethernet eth2 firewall local name" - - "delete interfaces ethernet eth2 firewall local ipv6-name" - - "set interfaces ethernet eth2 firewall out name 'INBOUND'" - - after: - - name: eth0 - - name: eth1 - - access_rules: - - afi: ipv4 - rules: - - name: INBOUND - direction: out - name: eth2 - -deleted: - commands: - - "delete interfaces ethernet eth1 firewall" - - "delete interfaces ethernet eth2 firewall" - - after: - - name: eth0 - - name: eth1 - - name: eth2 - -deleted_afi: - commands: - - "delete interfaces ethernet eth1 firewall in name" - - "delete interfaces ethernet eth1 firewall local name" - - "delete interfaces ethernet eth1 firewall out name" - - "delete interfaces ethernet eth1 firewall local ipv6-name" - - "delete interfaces ethernet eth2 firewall in name" - - "delete interfaces ethernet eth2 firewall local name" - - "delete interfaces ethernet eth2 firewall out name" - - "delete interfaces ethernet eth2 firewall local ipv6-name" - - after: - - name: eth0 - - access_rules: - - afi: ipv4 - - afi: ipv6 - name: eth1 - - access_rules: - - afi: ipv4 - - afi: ipv6 - name: eth2 - -deleted_single: - commands: - - "delete interfaces ethernet eth1 firewall in name 'INBOUND'" - after: - - name: eth0 - - access_rules: - - afi: ipv4 - rules: - - direction: local - name: LOCAL - - direction: out - name: OUTBOUND - - afi: ipv6 - rules: - - direction: local - name: V6-LOCAL - name: eth1 - - access_rules: - - afi: ipv4 - rules: - - direction: in - name: INBOUND - - direction: local - name: LOCAL - - direction: out - name: OUTBOUND - - afi: ipv6 - rules: - - direction: local - name: V6-LOCAL - name: eth2 - -rendered: - commands: - - "set interfaces ethernet eth1 firewall in name 'INBOUND'" - - "set interfaces ethernet eth1 firewall out name 'OUTBOUND'" - - "set interfaces ethernet eth1 firewall local name 'LOCAL'" - - "set interfaces ethernet eth1 firewall local ipv6-name 'V6-LOCAL'" - - "set interfaces ethernet eth2 firewall in name 'INBOUND'" - - "set interfaces ethernet eth2 firewall out name 'OUTBOUND'" - - "set interfaces ethernet eth2 firewall local name 'LOCAL'" - - "set interfaces ethernet eth2 firewall local ipv6-name 'V6-LOCAL'" - -round_trip: - after: - - name: eth0 - - access_rules: - - afi: ipv4 - rules: - - direction: in - name: INBOUND - - direction: local - name: LOCAL - - direction: out - name: OUTBOUND - - afi: ipv6 - rules: - - direction: local - name: V6-LOCAL - name: eth1 - - name: eth2 - access_rules: - - afi: ipv4 - rules: - - direction: in - name: INBOUND - - direction: local - name: LOCAL - - direction: out - name: OUTBOUND - - afi: ipv6 - rules: - - direction: local - name: V6-LOCAL |