Project

General

Profile

Actions

Bug #14705

closed

Changes in Ethernet ruleset can lead to incorrect rule and separator order

Added by Jonathan Lee over 1 year ago. Updated about 1 year ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Rules / NAT
Target version:
Start date:
Due date:
% Done:

100%

Estimated time:
Release Notes:
Default
Affected Plus Version:
23.05.1
Affected Architecture:
All

Description

Hello fellow pfSense Redmine community members,

I noticed after the recent software update to 23.05.1 that issues started to occur on my 2100 within the access control lists. This bug only occurs when rules are changed when I have separators in use which, results in a bug. That bug is the re-ordering of both layer 2 and the firewall’s user based ACL rulesets into a random order.
The ruleset is randomized, as well as the experimental layer 2 rules. I have confirmed the fix for this is to remove my custom separators (labels). After their removal editing rules can be done without a randomized rule order event.

I have explored this with Netgate forum however not many other users use rule separators and layer 2 experimental rule.

Ref:
https://forum.netgate.com/topic/182360/acl-access-control-list-rule-order-issue

for detailed researching of issue.

I do not know if this is a one off or something else.

What I expect to happen is that order of the rules stay the same and if I add a rule the rules just move down one, not a complete randomized change in the order of the rules I have in place already before.


Files

1692770826241-screenshot-2023-08-22-at-11.03.36-pm.png (306 KB) 1692770826241-screenshot-2023-08-22-at-11.03.36-pm.png Before Jonathan Lee, 08/23/2023 05:14 PM
1692770854565-screenshot-2023-08-22-at-11.04.15-pm.png (264 KB) 1692770854565-screenshot-2023-08-22-at-11.04.15-pm.png Rule change Jonathan Lee, 08/23/2023 05:15 PM
after.png (318 KB) after.png Rules went into randomized order Jonathan Lee, 08/23/2023 05:15 PM
afterlayer2.png (49.5 KB) afterlayer2.png Layer 2 rules reorder also Jonathan Lee, 08/23/2023 05:15 PM
Actions

Also available in: Atom PDF