push.rocks/smartnftables
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(firewall): add IP set blocking convenience API with CIDR interval support and optional rule comments

Browse Source
This commit is contained in:
Jürgen Kunz
2026-04-26 15:05:50 +00:00
parent 75dacef68e
commit 6e7c0d90d8
9 changed files with 106 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files
test/test.smartnftables.ts
+18
View File
@@ -97,6 +97,24 @@ tap.test('should handle blockIP convenience method', async () => {
await nft.cleanup();
});
tap.test('should handle blockIPSet convenience method', async () => {
const nft = new SmartNftables({ tableName: 'test' });
await nft.initialize();
await nft.firewall.blockIPSet('bad-actors', {
ips: ['1.2.3.4', '5.6.0.0/16'],
setName: 'blocked_ipv4',
comment: 'test blocklist',
});
const status = nft.status();
const group = status.groups['fw:blockset:bad-actors'];
expect(group).toBeDefined();
expect(group.ruleCount).toEqual(3); // create set, add elements, match rule
await nft.cleanup({ force: true });
});
tap.test('should handle stateful tracking convenience', async () => {
const nft = new SmartNftables({ tableName: 'test' });
await nft.initialize();