Project

General

Profile

Actions

Bug #2338

closed

outbound NAT rules rewrite themselves if active interface is deleted

Added by David Burgess almost 12 years ago. Updated about 11 years ago.

Status:
Resolved
Priority:
Normal
Category:
Rules / NAT
Target version:
Start date:
04/04/2012
Due date:
% Done:

100%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.0.1
Affected Architecture:

Description

To recreate:

1. Configure a working system with WAN, LAN, OPTx
2. Disable Automatic Outbound NAT and deleted automatically created rules
3. Create an outbound NAT rule on interface OPTx, source: LAN subnet

At this point you should have straight routing between LAN and WAN, and LAN>OPT1 should be NATed.

4. Now disable and delete the OPT1 interface

At this point the outbound NAT rule you created will rewrite itself. In my case it changed from OPTx interface to WAN, so my LAN hosts were now being NATed to WAN, breaking cPanel licensing and locking out inbound access for LAN hosts. A better behaviour would be to create an error when the user attempts to delete an interface that is active in outbound NAT, or automatically disable any affected NAT rules.

Actions

Also available in: Atom PDF