Project

General

Profile

Actions
Copy link

Bug #194

closed

Rules specifying a deleted interface skipped

Added by Chris Buechler about 16 years ago. Updated over 11 years ago.

Status:
Closed
Priority:
Very Low
Assignee:
-
Category:
Rules / NAT
Target version:
-
Start date:
11/29/2009
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.0
Affected Architecture:

Description

(updated to reflect status in 2.0, and moved from cvstrac)

When an interface is deleted, any rules referencing that interface's subnet or address are skipped. This has the potential to either firewall things that shouldn't be, or allow traffic the administrator doesn't want. Given the subnet is deleted, that isn't likely.

Ideally should disable the affected rules when an interface is deleted, and warn the user that rules referencing the deleted interface have been disabled. As is, they're left there and the field that used to reference the deleted interface is blank on firewall_rules.php. If you edit the rule, it forces you to change the field that used to reference the deleted interface before saving, so this is much better than 1.2.x.

Actions
Copy link
 #1

Updated by Chris Buechler over 11 years ago

  • Status changed from New to Closed
Actions
Copy link

Also available in: Atom PDF