ACL Test Plan:
Creation of ACL rule by rest api and validating the rules on Switch (DUT).
*ACL Test Cases (Implemented and Planned) : *
| ID | Title | Function Name | Test Steps | Expected Result |
| ACL_1 | Test acl allow rule | test_acl_allow_rule | Configure ACL rule with allow action Verify ACL rule is being created on DUT | ACL rule has beed created on DUT |
| ACL_2 | Test acl allow rule with 24 bit mask | test_acl_allow_rule_with_24_bit_mask | 1. Configure ACL rule with allow action and 24 bit mask 2. Verify ACL rule is being created on DUT | ACL rule has beed created on DUT |
| ACL_3 | Test acl deny rule | test_acl_deny_rule | 1. Configure ACL rule with deny action 2. Verify ACL rule is being created on DUT | ACL rule has beed created on DUT |
| ACL_4 | Test acl deny rule with 24 bit mask | test_acl_deny_rule_with_24_bit_mask | 1. Configure ACL rule with deny action and 24 bit mask 2. Verify ACL rule is being created on DUT | ACL rule has beed created on DUT |
| ACL_5 | Test acl add remove rule | test_acl_add_remove_rule | 1. Configure ACL rule with any action 2. Verify ACL rule is being created on DUT 3. Delete created ACL rule | ACL rule has been deleted on DUT |
| ACL_6 | Test acl add removeall rules | test_acl_add_remove_all_rules | 1. Configure ACL rule with any action 2. Verify ACL rule is being created on DUT 3. Delete created all ACL rule | All ACL rules has been deleted on DUT |
| ACL_7 | Test acl remove all rules without add | test_acl_remove_all_rules_without_add | 1. Delete all ACL rule with out create amy ACL rule | All ACL rule has been deleted on DUT |
| ACL_8 | Test acl allow and deny rule for same src and dst ip | test_acl_allow_and_deny_rule_for_same_src_and_dst_ip | 1. Configure ACL rule with for same src and dst ip with action allow and deny 2. Verify ACL rule is not being created on DUT | ACL rule has not been created on DUT |
| ACL_9 | Test acl allow rules for matched dst ips | test_acl_allow_rules_for_matched_dst_ips | Configure ACL rule with for dst ip where already matched ACL rule Verify ACL rule is not being created on DU | ACL rule has not been created on DUT |
| ACL_10 | Test acl with matching src and dst ip traffic | test_acl_with_matching_src_and_dst_ip_traffic | 1. Configure ACL rule with allow action 2. Verify ACL rule is being created on DUT 3. Check with ACL rule matched traffic | ACL rule has been created on DUT and traffic is allowed |
| ACL_11 | Test acl with matching 24bit mask src and dst ip traffic | test_acl_with_matching_24bit_mask_src_and_dst_ip_traffic | 1. Configure ACL rule with allow action and 24 bit mask 2. Verify ACL rule is being created on DUT 3. Check with ACL rule matched traffic | ACL rule has been created on DUT and traffic is allowed |
| ACL_12 | Test acl with non matching src and dst ip traffic | test_acl_with_non_matching_src_and_dst_ip_traffic | 1. Configure ACL rule with allow action 2. Verify ACL rule is being created on DUT 3. Check with ACL rule non matched traffic | ACL rule has been created on DUT and traffic is not allowed |
| ACL_13 | Test acl deny rule with matching src and dst ip traffic | test_acl_deny_rule_with_matching_src_and_dst_ip_traffic | 1. Configure ACL rule with deny action 2. Verify ACL rule is being created on DUT 3. Check with ACL rule matched traffic | ACL rule has been created on DUT and traffic is not allowed |
| ACL_14 | Test acl deny rule with src and dst ip apply ing 24 bit mask for matching traffic | test_acl_deny_rule_with_src_and_dst_ip_applying_24_bit_mask_for_matching_traffic | 1. Configure ACL rule with deny action and 24 bit mask 2. Verify ACL rule is being created on DUT 3. Check with ACL rule matched traffic | ACL rule has been created on DUT and traffic is not allowed |
| ACL_15 | Test acl deny_rule with non matching src and dst ip traffic | test_acl_deny_rule_with_non_matching_src_and_dst_ip_traffic | 1. Configure ACL rule with allow action 2. Verify ACL rule is being created on DUT 3. Check with ACL rule non matched traffic | ACL rule has been created on DUT and traffic is not allowed |
| ACL_16 | Test acl allow and deny rules with matching src and dst ip traffic | test_acl_allow_and_deny_rules_with_matching_src_and_dst_ip_traffic | 1. Configure ACL rules with allow and deny action 2. Verify ACL rules is being created on DUT 3. Check with ACL rules matched traffic | ACL rules has been created on DUT and matched traffic is allowed for allow action and deny for deny action. |
| ACL_17 | Test acl for l4 acl rule | test_acl_for_l4_acl_rule | 1. Configure ACL rule with L4 port and allow action 2. Verify ACL rule is being created on DUT | ACL rule has been created on DUT |
| ACL_18 | Test acl for remove l4 rule | test_acl_for_remove_l4_rule | Configure ACL rule with L4 port and allow action Remove the config ACL rule | ACL rule has been created on DUT and able to removed it |
| ACL_19 | Test acl for remove l4 rules | test_acl_for_remove_l4_rules | 1. Configure ACL rule with L4 port and allow action 2. Remove the config all ACL rules | ACL rule has been created on DUT and able to removed all of acl rules |
| ACL_20 | Test acl adding specific l4 and all l4 allow rule | test_acl_adding_specific_l4_and_all_l4_allow_rule | 1. Configure ACL rule with specific L4 port and allow action 2. Verify ACL rule with all L4 port is being created on DUT | ACL rules has been created on DUT |
| ACL_21 | Test acl adding all l4 and specific l4 allow rule | test_acl_adding_all_l4_and_specific_l4_allow_rule | 1. Configure ACL rule with all L4 port and allow action 2. Verify ACL rule with specific L4 port is not being created on DUT | ACL rule with all L4 port number has been created on DUT |
| ACL_22 | Test acl with specific l4 deny and all l4 allow rule | test_acl_with_specific_l4_deny_and_all_l4_allow_rule | 1. Configure ACL rule with specific L4 port and deny action 2. Verify ACL rule with all L4 port and allow is being created on DUT | ACL rules has been created on DUT |
| ACL_23 | Test acl with all l4 and specific l4 deny rule | test_acl_with_all_l4_and_specific_l4_deny_rule | 1. Configure ACL rule with all L4 port and deny action 2. Verify ACL rule with specific L4 port and deny is not being created on DUT | ACL rule has been created on DUT |
| ACL_24 | Test acl with specific l4 deny and all l4 allow rule | test_acl_with_specific_l4_deny_and_all_l4_allow_rule | 1. Configure ACL rule with specific L4 port and deny action 2. Verify ACL rule with all L4 port and allow is not being created on DUT | ACL rules has been created on DUT |
| ACL_25 | Test acl deny all l4 and allow specific l4 rule | test_acl_deny_all_l4_and_allow_specific_l4_rule | 1. Configure ACL rule with all L4 port and deny action 2. Verify ACL rule with specific L4 port and allow is not being created on DUT | ACL rule has been created on DUT |
| ACL_26 | Test acl tcp port allow rule for matching and non matching traffic | test_acl_tcp_port_allow_rule_for_matching_and_non_matching_traffic | 1. Configure ACL rule with allow action 2. Verify ACL rule is being created on DUT 3. Check with ACL rule matched traffic 4. Check with ACL rule non matched traffic | ACL rule has been created on DUT and matched traffic is allowed and non-matched is not allowed |
| ACL_27 | Test acl udp port allow rule for matching and non matching traffic | test_acl_udp_port_allow_rule_for_matching_and_non_matching_traffic | 1. Configure ACL rule with allow action 2. Verify ACL rule is being created on DUT 3. Check with ACL rule matched traffic 4. Check with ACL rule non matched traffic | ACL rule has been created on DUT and matched traffic is allowed and non-matched is not allowed |
| ACL_28 | Test acl icmp port allow rule for matching and non matching traffic | test_acl_icmp_port_allow_rule_for_matching_and_non_matching_traffic | 1. Configure ACL rule with allow action 2. Verify ACL rule is being created on DUT 3. Check with ACL rule matched traffic 4. Check with ACL rule non matched traffic | ACL rule has been created on DUT and matched traffic is allowed and non-matched is not allowed |
| ACL_29 | Test acl tcp port deny rule for matching and non matching traffic | test_acl_tcp_port_deny_rule_for_matching_and_non_matching_traffic | 1. Configure ACL rule with deny action 2. Verify ACL rule is being created on DUT 3. Check with ACL rule matched traffic 4. Check with ACL rule non matched traffic | ACL rule has been created on DUT and matched traffic is allowed and non-matched is not allowed |
| ACL_30 | Test acl udp port deny rule for matching and non matching traffic | test_acl_udp_port_deny_rule_for_matching_and_non_matching_traffic | 1. Configure ACL rule with deny action 2. Verify ACL rule is being created on DUT 3. Check with ACL rule matched traffic 4. Check with ACL rule non matched traffic | ACL rule has been created on DUT and matched traffic is allowed and non-matched is not allowed |
| ACL_31 | Test acl icmp port deny rule for matching and non matching traffic | test_acl_icmp_port_deny_rule_for_matching_and_non_matching_traffic | 1. Configure ACL rule with allow action 2. Verify ACL rule is being created on DUT 3. Check with ACL rule matched traffic 4. Check with ACL rule non matched traffic | ACL rule has been created on DUT and matched traffic is allowed and non-matched is not allowed |
| ACL_32 | Test acl two allow rules for tcp port matching traffic | test_acl_two_allow_rules_for_tcp_port_matching_traffic | 1. Configure ACL rule with allow action 2. Verify ACL rule is being created on DUT 3. Check with ACL rule matched traffic 4. Check with ACL rule non matched traffic for first ACL | ACL rule has been created on DUT and matched traffic is allowed and non-matched is not allowed |
| ACL_33 | Test acl two allow rules for udp port matching traffic | test_acl_two_allow_rules_for_udp_port_matching_traffic | 1. Configure ACL rule with allow action 2. Verify ACL rule is being created on DUT 3. Check with ACL rule matched traffic 4. Check with ACL rule non matched traffic for first ACL | ACL rule has been created on DUT and matched traffic is allowed and non-matched is not allowed |
| ACL_34 | Test acl two allow rules for src ips dst ips and l4 ports matching traffic | test_acl_two_allow_rules_for_src_ips_dst_ips_and_l4_ports_matching_traffic | 1. Configure ACL rule with allow action 2. Verify ACL rule is being created on DUT 3. Check with ACL rule matched traffic 4. Check with ACL rule non matched traffic for first ACL | ACL rule has been created on DUT and matched traffic is allowed and non-matched is not allowed |
| ACL_35 | test_acl allow and deny rules for src ips dst ips and l4 ports matching traffic | test_acl_allow_and_deny_rules_for_src_ips_dst_ips_and_l4_ports_matching_traffic | 1. Configure ACL rule with allow and deny action 2. Verify ACL rule is being created on DUT 3. Check with ACL rule matched traffic 4. Check with ACL rule non matched traffic for first ACL | ACL rule has been created on DUT and matched traffic is allowed and non-matched is not allowed |