1 # Copyright (c) 2016 Cisco and/or its affiliates.
2 # Licensed under the Apache License, Version 2.0 (the "License");
3 # you may not use this file except in compliance with the License.
4 # You may obtain a copy of the License at:
6 # http://www.apache.org/licenses/LICENSE-2.0
8 # Unless required by applicable law or agreed to in writing, software
9 # distributed under the License is distributed on an "AS IS" BASIS,
10 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
11 # See the License for the specific language governing permissions and
12 # limitations under the License.
15 | Library | resources.libraries.python.Trace
16 | Library | resources.libraries.python.Cop
17 | Resource | resources/libraries/robot/default.robot
18 | Resource | resources/libraries/robot/interfaces.robot
19 | Resource | resources/libraries/robot/ipv4.robot
20 | Resource | resources/libraries/robot/traffic.robot
21 | Resource | resources/libraries/robot/testing_path.robot
22 | Resource | resources/libraries/robot/l2_xconnect.robot
23 | Variables | resources/libraries/python/IPv4NodeAddress.py | ${nodes}
24 | Force Tags | HW_ENV | VM_ENV | 3_NODE_SINGLE_LINK_TOPO
25 | Suite Setup | Run Keywords | Setup all DUTs before test
26 | ... | AND | Setup all TGs before traffic script
27 | ... | AND | Update All Interface Data On All Nodes | ${nodes}
28 | Test Setup | Clear interface counters on all vpp nodes in topology | ${nodes}
29 | Test Teardown | Show packet trace on all DUTs | ${nodes}
30 | Documentation | *COP Blacklist and Whitelist Tests*
31 | ... | COP tests use 3-node topology TG - DUT1 - DUT2 - TG with one
32 | ... | link between nodes. DUT1 is configured with COP whitelist or
33 | ... | blacklist on link to TG, DUT2 is configured with L2
34 | ... | xconnect. Test packets are sent in one direction by TG on
35 | ... | link to DUT1 and received on TG link to DUT2. On receive TG
36 | ... | verifies packet IP src-addr, dst-addr and MAC addresses.
39 | ${tg_node}= | ${nodes['TG']}
40 | ${dut1_node}= | ${nodes['DUT1']}
41 | ${dut2_node}= | ${nodes['DUT2']}
43 | ${dut1_if1_ip}= | 192.168.1.1
44 | ${dut1_if2_ip}= | 192.168.2.1
45 | ${dut1_if1_ip_GW}= | 192.168.1.2
46 | ${dut1_if2_ip_GW}= | 192.168.2.2
48 | ${test_dst_ip}= | 32.0.0.1
49 | ${test_src_ip}= | 16.0.0.1
51 | ${cop_dut_ip}= | 16.0.0.0
54 | ${nodes_ipv4_addresses}= | ${nodes_ipv4_addr}
56 | ${fib_table_number}= | 1
59 | TC01: DUT permits IPv4 pkts with COP whitelist set with IPv4 src-addr
60 | | [Documentation] | Eth-IPv4-ICMPv4 on links TG-DUT1, TG-DUT2, DUT1-DUT2: On
61 | | ... | DUT1 configure interface IPv4 addresses and routes in the
62 | | ... | main routing domain. Add COP whitelist with IPv4 src-addr
63 | | ... | matching packets generated by TG. On DUT2 configure L2
64 | | ... | xconnect. Make TG send ICMPv4 Echo Req on its interface to
65 | | ... | DUT1. Make TG verify received ICMPv4 Echo Replies are
67 | | Given Path for 3-node testing is set
68 | | ... | ${tg_node} | ${dut1_node} | ${dut2_node} | ${tg_node}
69 | | And Interfaces in 3-node path are up
70 | | And L2 setup xconnect on DUT
71 | | ... | ${dut2_node} | ${dut2_to_dut1} | ${dut2_to_tg}
72 | | And Set Interface Address
73 | | ... | ${dut1_node} | ${dut1_to_tg} | ${dut1_if1_ip} | ${ip_prefix}
74 | | And Set Interface Address
75 | | ... | ${dut1_node} | ${dut1_to_dut2} | ${dut1_if2_ip} | ${ip_prefix}
76 | | And Add Arp On Dut
77 | | ... | ${dut1_node} | ${dut1_to_tg} | ${dut1_if1_ip_GW} | ${tg_to_dut1_mac}
78 | | And Add Arp On Dut
79 | | ... | ${dut1_node} | ${dut1_to_dut2} | ${dut1_if2_ip_GW} | ${tg_to_dut2_mac}
80 | | And Vpp Route Add | ${dut1_node}
81 | | ... | ${test_dst_ip} | ${ip_prefix} | ${dut1_if2_ip_GW} | ${dut1_to_dut2}
82 | | And Add fib table | ${dut1_node}
83 | | ... | ${cop_dut_ip} | ${ip_prefix} | ${fib_table_number} | local
84 | | When COP Add whitelist Entry
85 | | ... | ${dut1_node} | ${dut1_to_tg} | ip4 | ${fib_table_number}
86 | | And COP interface enable or disable | ${dut1_node} | ${dut1_to_tg} | enable
87 | | Then Send Packet And Check Headers | ${tg_node}
88 | | ... | ${test_src_ip} | ${test_dst_ip} | ${tg_to_dut1} | ${tg_to_dut1_mac}
89 | | ... | ${dut1_to_tg_mac} | ${tg_to_dut2} | ${dut1_to_dut2_mac}
90 | | ... | ${tg_to_dut2_mac}
93 | TC02: DUT drops IPv4 pkts with COP blacklist set with IPv4 src-addr
94 | | [Documentation] | Eth-IPv4-ICMPv4 on links TG-DUT1, TG-DUT2, DUT1-DUT2: On
95 | | ... | DUT1 configure interface IPv4 addresses and routes in the
96 | | ... | main routing domain. Add COP blacklist with IPv4 src-addr
97 | | ... | matching packets generated by TG. On DUT2 configure L2
98 | | ... | xconnect. Make TG send ICMPv4 Echo Req on its interface to
99 | | ... | DUT1. Make TG verify blacklisted ICMPv4 Echo Replies are
101 | | Given Path for 3-node testing is set
102 | | ... | ${tg_node} | ${dut1_node} | ${dut2_node} | ${tg_node}
103 | | And Interfaces in 3-node path are up
104 | | And L2 setup xconnect on DUT
105 | | ... | ${dut2_node} | ${dut2_to_dut1} | ${dut2_to_tg}
106 | | And Set Interface Address
107 | | ... | ${dut1_node} | ${dut1_to_tg} | ${dut1_if1_ip} | ${ip_prefix}
108 | | And Set Interface Address
109 | | ... | ${dut1_node} | ${dut1_to_dut2} | ${dut1_if2_ip} | ${ip_prefix}
110 | | And Add Arp On Dut
111 | | ... | ${dut1_node} | ${dut1_to_tg} | ${dut1_if1_ip_GW} | ${tg_to_dut1_mac}
112 | | And Add Arp On Dut
113 | | ... | ${dut1_node} | ${dut1_to_dut2} | ${dut1_if2_ip_GW} | ${tg_to_dut2_mac}
114 | | And Vpp Route Add | ${dut1_node}
115 | | ... | ${test_dst_ip} | ${ip_prefix} | ${dut1_if2_ip_GW} | ${dut1_to_dut2}
116 | | And Add fib table | ${dut1_node}
117 | | ... | ${cop_dut_ip} | ${ip_prefix} | ${fib_table_number} | drop
118 | | When COP Add whitelist Entry
119 | | ... | ${dut1_node} | ${dut1_to_tg} | ip4 | ${fib_table_number}
120 | | And COP interface enable or disable | ${dut1_node} | ${dut1_to_tg} | enable
121 | | Then Send packet from Port to Port should failed | ${tg_node}
122 | | ... | ${test_src_ip} | ${test_dst_ip} | ${tg_to_dut1} | ${tg_to_dut1_mac}
123 | | ... | ${dut1_to_tg_mac} | ${tg_to_dut2} | ${dut1_to_dut2_mac}
124 | | ... | ${tg_to_dut2_mac}
Code Review / csit.git / blob