Actions
Regression #15400
closed
IGMP packets are logged when the filter rule has logging disabled
Status:
Not a Bug
Priority:
Normal
Assignee:
-
Category:
Logging
Target version:
-
Start date:
Due date:
% Done:
0%
Estimated time:
Plus Target Version:
Release Notes:
Default
Affected Version:
2.8.0
Affected Architecture:
Description
Example rules:
pass in quick inet proto igmp pass in quick inet proto igmp allow-optsOn 23.09.1:
- IGMP packets are matched by the first rule; if the first rule is removed, the second rule will match.
- Logging is respected for both the first and second rule - i.e. a log entry is only created if
logis added to the rule. - The log entry shows
passor block as determined by the rule action:
Apr 12 10:24:55 router filterlog[89591]: 89,,,1712938789,vmx1,match,pass,in,4,0x0,,1,61477,0,none,2,igmp,32,10.0.5.50,224.0.0.251,datalength=8
- IGMP packets are matched by the first rule; if the first rule is removed, the second rule will match.
- Logging is only respected for the second rule; a log entry is always created for the first rule.
- The log entry always shows
blockfor the first rule:
Apr 12 09:56:49 gw filterlog[8789]: 338,,,1712937337,igc0.5,ip-option,block,in,4,0x0,,1,32022,0,none,2,igmp,32,10.0.5.50,224.0.0.252,datalength=8
Related issues
Updated by 
Updated by 
Updated by 
Updated by
Actions