Bug #11572: Auto created firewall rules have IPv4 as protocol only - even for IPv6 lists. - pfSense Packages - pfSense bugtracker

Actions

Copy link

Bug #11572

open

Auto created firewall rules have IPv4 as protocol only - even for IPv6 lists.

Added by Dave Tickem over 3 years ago. Updated over 2 years ago.

Status:

New

Priority:

High

Assignee:

Category:

pfBlockerNG

Target version:

Start date:

02/28/2021

Due date:

% Done:

Estimated time:

Plus Target Version:

Affected Version:

Affected Plus Version:

Affected Architecture:

All

Description

Using any IPv6 list in pfblocker-ng "IPv6 settings" tab results in a firewall rule with the protocol set to IPv4. This results in IPv6 traffic being passed that should be blocked by the pfblocker list rule.

Suggestion: Change auto-created rule for "IPv6" pfblocker-ng entries to IPv6..

Steps to reproduce:

vanilla pfSense install 2.5.0 x86_64. WAN/LAN only.
install pfblocker (2.1.4_24)
enable pfblockerng

Firewall / pfBlockerNG / IPv6 :

add an IPv6 list - for example https : //www.spamhaus.org/drop/dropv6.txt
Set list action to "deny both"

force update of pfblocker
Examine LAN firewall rules - note auto rule created, with protocol of IPv4.

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense » pfSense Packages

Custom queries

Bug #11572

Auto created firewall rules have IPv4 as protocol only - even for IPv6 lists.

Updated by BBcan177 . over 3 years ago

Updated by Dave Tickem over 3 years ago

Updated by BBcan177 . over 3 years ago

Updated by Viktor Gurov over 3 years ago

Updated by Beat Siegenthaler over 2 years ago