Bug #10941
closedpfBlockerNG-devel Bug in ipv6 lists when updating
0%
Description
I posted initially in the forum with screenshots in case it is something I am doing but during update the pfblocker ipv6 alias's get clobbered in the rules. This has happened before, so it is not a new issue with today's update.
During update the ipv6 Alias's get a _v4 added to the end of the alias name, and it was changed to protocol IPv4. Of course, then the firewall throws all kinds of errors since it doesn't see it as a legit alias. My rules are in an interface group if that makes a difference, but I have seen it happen when I had rules in the WAN interface also in the past.
https://forum.netgate.com/topic/157274/bug-in-ipv6-lists-when-updating
Is there a reason why a separate _v4 and _v6 alias needs to be generated? Seems like a single Alias with both types would work just as well.
I am on:
pfBlockerNG-devel 2.2.5_35 but it has been in the prior versions also.
2.4.5-RELEASE-p1 (amd64)
built on Tue Jun 02 17:51:17 EDT 2020
FreeBSD 11.3-STABLE
Files
Updated by Rick Coats about 4 years ago
Updated by Marcos M about 4 years ago
I could not reproduce this using settings/rules as close as possible.
Updated by Rick Coats about 4 years ago
I did the upgrade from .35 to .36 today and did not get this problem this time, so it could be that it has fixed itself.
I did get the messages about unrolvable alias during upgrade but I would assume that should be expected.
Unresolvable source alias 'pfB_PRI1_v4' for rule 'pfb_WAN: Malicious Networks' 2020-10-06 12:48:06
2020-10-06 12:48:07
Unresolvable source alias 'pfB_PRI1_6_v6' for rule 'pfb_WAN: Malicious Networks'
Unresolvable source alias 'pfB_NAmerica_v6' for rule 'pfb_OpenVPN Mobile VPN Clients wizard' 2020-10-06 12:48:08
2020-10-06 12:48:09
Unresolvable source alias 'pfB_NAmerica_v4' for rule 'pfb_OpenVPN Mobile VPN Clients wizard'
Unresolvable destination alias 'pfB_Top_v4' for rule 'pfb_GROUP: GEOIP Top Spammers' 2020-10-06 12:48:10
2020-10-06 12:48:11
Unresolvable destination alias 'pfB_Top_v6' for rule 'pfb_GROUP: GEOIP Top Spammers'
Unresolvable destination alias 'pfB_PRI1_v4' for rule 'pfb_GROUP: Malicious Networks' 2020-10-06 12:48:12
2020-10-06 12:48:13
Unresolvable destination alias 'pfB_PRI1_6_v6' for rule 'pfb_GROUP: Malicious Networks'
Updated by Rick Coats about 4 years ago
Since it seems to be resolved, it was probably unique to my configuration, so I am amenable to closing or downgrading this bug.