headscale/hscontrol/policy/v2/testdata/acl_results/ACL-A15.hujson

// ACL-A15
//
// ACL:  accept: src=['autogroup:member', 'autogroup:tagged'] dst=['*:*']
//
// Expected: Rules on 8 of 8 nodes
{
  "test_id": "ACL-A15",
  "input": {
    "full_policy": {
      "groups": {
        "group:admins": [
          "kratail2tid@passkey"
        ],
        "group:developers": [
          "kristoffer@dalby.cc",
          "kratail2tid@passkey"
        ],
        "group:monitors": [
          "monitorpasskeykradalby@passkey"
        ],
        "group:empty": []
      },
      "tagOwners": {
        "tag:server": [
          "kratail2tid@passkey"
        ],
        "tag:prod": [
          "kratail2tid@passkey"
        ],
        "tag:client": [
          "kratail2tid@passkey"
        ],
        "tag:router": [
          "kratail2tid@passkey"
        ],
        "tag:exit": [
          "kratail2tid@passkey"
        ]
      },
      "hosts": {
        "webserver": "100.108.74.26",
        "prodbox": "100.103.8.15",
        "internal": "10.0.0.0/8",
        "subnet24": "192.168.1.0/24"
      },
      "autoApprovers": {
        "routes": {
          "10.33.0.0/16": [
            "tag:router"
          ],
          "0.0.0.0/0": [
            "tag:exit"
          ],
          "::/0": [
            "tag:exit"
          ]
        }
      },
      "acls": [
        {
          "action": "accept",
          "src": [
            "autogroup:member",
            "autogroup:tagged"
          ],
          "dst": [
            "*:*"
          ]
        }
      ]
    }
  },
  "captures": {
    "exit-node": {
      "packet_filter_rules": [
        {
          "SrcIPs": [
            "100.103.8.15",
            "100.103.90.82",
            "100.108.74.26",
            "100.110.121.96",
            "100.83.200.69",
            "100.85.66.106",
            "100.90.199.68",
            "100.92.142.61",
            "fd7a:115c:a1e0::1737:7960",
            "fd7a:115c:a1e0::2d01:c747",
            "fd7a:115c:a1e0::3e37:8e3d",
            "fd7a:115c:a1e0::5b37:80f",
            "fd7a:115c:a1e0::7c37:426a",
            "fd7a:115c:a1e0::9e37:5a52",
            "fd7a:115c:a1e0::b901:4a87",
            "fd7a:115c:a1e0::c537:c845"
          ],
          "DstPorts": [
            {
              "IP": "*",
              "Ports": {
                "First": 0,
                "Last": 65535
              }
            }
          ]
        }
      ]
    },
    "subnet-router": {
      "packet_filter_rules": [
        {
          "SrcIPs": [
            "100.103.8.15",
            "100.103.90.82",
            "100.108.74.26",
            "100.110.121.96",
            "100.83.200.69",
            "100.85.66.106",
            "100.90.199.68",
            "100.92.142.61",
            "fd7a:115c:a1e0::1737:7960",
            "fd7a:115c:a1e0::2d01:c747",
            "fd7a:115c:a1e0::3e37:8e3d",
            "fd7a:115c:a1e0::5b37:80f",
            "fd7a:115c:a1e0::7c37:426a",
            "fd7a:115c:a1e0::9e37:5a52",
            "fd7a:115c:a1e0::b901:4a87",
            "fd7a:115c:a1e0::c537:c845"
          ],
          "DstPorts": [
            {
              "IP": "*",
              "Ports": {
                "First": 0,
                "Last": 65535
              }
            }
          ]
        }
      ]
    },
    "tagged-client": {
      "packet_filter_rules": [
        {
          "SrcIPs": [
            "100.103.8.15",
            "100.103.90.82",
            "100.108.74.26",
            "100.110.121.96",
            "100.83.200.69",
            "100.85.66.106",
            "100.90.199.68",
            "100.92.142.61",
            "fd7a:115c:a1e0::1737:7960",
            "fd7a:115c:a1e0::2d01:c747",
            "fd7a:115c:a1e0::3e37:8e3d",
            "fd7a:115c:a1e0::5b37:80f",
            "fd7a:115c:a1e0::7c37:426a",
            "fd7a:115c:a1e0::9e37:5a52",
            "fd7a:115c:a1e0::b901:4a87",
            "fd7a:115c:a1e0::c537:c845"
          ],
          "DstPorts": [
            {
              "IP": "*",
              "Ports": {
                "First": 0,
                "Last": 65535
              }
            }
          ]
        }
      ]
    },
    "tagged-prod": {
      "packet_filter_rules": [
        {
          "SrcIPs": [
            "100.103.8.15",
            "100.103.90.82",
            "100.108.74.26",
            "100.110.121.96",
            "100.83.200.69",
            "100.85.66.106",
            "100.90.199.68",
            "100.92.142.61",
            "fd7a:115c:a1e0::1737:7960",
            "fd7a:115c:a1e0::2d01:c747",
            "fd7a:115c:a1e0::3e37:8e3d",
            "fd7a:115c:a1e0::5b37:80f",
            "fd7a:115c:a1e0::7c37:426a",
            "fd7a:115c:a1e0::9e37:5a52",
            "fd7a:115c:a1e0::b901:4a87",
            "fd7a:115c:a1e0::c537:c845"
          ],
          "DstPorts": [
            {
              "IP": "*",
              "Ports": {
                "First": 0,
                "Last": 65535
              }
            }
          ]
        }
      ]
    },
    "tagged-server": {
      "packet_filter_rules": [
        {
          "SrcIPs": [
            "100.103.8.15",
            "100.103.90.82",
            "100.108.74.26",
            "100.110.121.96",
            "100.83.200.69",
            "100.85.66.106",
            "100.90.199.68",
            "100.92.142.61",
            "fd7a:115c:a1e0::1737:7960",
            "fd7a:115c:a1e0::2d01:c747",
            "fd7a:115c:a1e0::3e37:8e3d",
            "fd7a:115c:a1e0::5b37:80f",
            "fd7a:115c:a1e0::7c37:426a",
            "fd7a:115c:a1e0::9e37:5a52",
            "fd7a:115c:a1e0::b901:4a87",
            "fd7a:115c:a1e0::c537:c845"
          ],
          "DstPorts": [
            {
              "IP": "*",
              "Ports": {
                "First": 0,
                "Last": 65535
              }
            }
          ]
        }
      ]
    },
    "user-kris": {
      "packet_filter_rules": [
        {
          "SrcIPs": [
            "100.103.8.15",
            "100.103.90.82",
            "100.108.74.26",
            "100.110.121.96",
            "100.83.200.69",
            "100.85.66.106",
            "100.90.199.68",
            "100.92.142.61",
            "fd7a:115c:a1e0::1737:7960",
            "fd7a:115c:a1e0::2d01:c747",
            "fd7a:115c:a1e0::3e37:8e3d",
            "fd7a:115c:a1e0::5b37:80f",
            "fd7a:115c:a1e0::7c37:426a",
            "fd7a:115c:a1e0::9e37:5a52",
            "fd7a:115c:a1e0::b901:4a87",
            "fd7a:115c:a1e0::c537:c845"
          ],
          "DstPorts": [
            {
              "IP": "*",
              "Ports": {
                "First": 0,
                "Last": 65535
              }
            }
          ]
        }
      ]
    },
    "user-mon": {
      "packet_filter_rules": [
        {
          "SrcIPs": [
            "100.103.8.15",
            "100.103.90.82",
            "100.108.74.26",
            "100.110.121.96",
            "100.83.200.69",
            "100.85.66.106",
            "100.90.199.68",
            "100.92.142.61",
            "fd7a:115c:a1e0::1737:7960",
            "fd7a:115c:a1e0::2d01:c747",
            "fd7a:115c:a1e0::3e37:8e3d",
            "fd7a:115c:a1e0::5b37:80f",
            "fd7a:115c:a1e0::7c37:426a",
            "fd7a:115c:a1e0::9e37:5a52",
            "fd7a:115c:a1e0::b901:4a87",
            "fd7a:115c:a1e0::c537:c845"
          ],
          "DstPorts": [
            {
              "IP": "*",
              "Ports": {
                "First": 0,
                "Last": 65535
              }
            }
          ]
        }
      ]
    },
    "user1": {
      "packet_filter_rules": [
        {
          "SrcIPs": [
            "100.103.8.15",
            "100.103.90.82",
            "100.108.74.26",
            "100.110.121.96",
            "100.83.200.69",
            "100.85.66.106",
            "100.90.199.68",
            "100.92.142.61",
            "fd7a:115c:a1e0::1737:7960",
            "fd7a:115c:a1e0::2d01:c747",
            "fd7a:115c:a1e0::3e37:8e3d",
            "fd7a:115c:a1e0::5b37:80f",
            "fd7a:115c:a1e0::7c37:426a",
            "fd7a:115c:a1e0::9e37:5a52",
            "fd7a:115c:a1e0::b901:4a87",
            "fd7a:115c:a1e0::c537:c845"
          ],
          "DstPorts": [
            {
              "IP": "*",
              "Ports": {
                "First": 0,
                "Last": 65535
              }
            }
          ]
        }
      ]
    }
  }
}