Bug #3208
closedinterface name over 17 characters long results in pf errors
100%
Description
Renaming an interface to, in my case, RD_LOM_DISTRIBUTION caused this error:
Sep 17 18:43:39 f1 php: rc.bootup: New alert found: There were error(s) loading the rules: /tmp/rules.debug:177: rule label too long (max 63 chars) - The line in question reads [177]: block in log quick on $RD_LOM_DISTRIBUTION from 192.168.0.0/16 to any label "Block private networks from RD_LOM_DISTRIBUTION block 192.168/16"
I didn't test to see if the problem went away with RD_LOM_DISTRIBUTIO or RD_LOM_DISTRIBUTI but based on the error message, one of those should work. I always make fencepost errors when adding up things like this.
I'm unsure if the appropriate action is to limit the length of an interface name, or to truncate the pf labels at 63 chars when generating /tmp/rules.debug.
Updated by Renato Botelho about 11 years ago
- Category set to Rules / NAT
- Target version set to 2.1.1
Updated by Renato Botelho about 11 years ago
- Priority changed from High to Normal
Updated by Renato Botelho about 11 years ago
- Status changed from New to Feedback
- % Done changed from 0 to 100
Applied in changeset 9d879385019c6640fddf16b639d910e17e67f5d4.
Updated by Renato Botelho about 11 years ago
Applied in changeset a4e4b5609c8ec28b9e680e8813a110b9cf7aedc7.
Updated by Renato Botelho almost 11 years ago
- Status changed from Feedback to Resolved
Updated by Damien Montalan over 10 years ago
The problem persists in 2.1.3 release, if interface is an Interface Group of more than 15 characters