Bug #3688
closed
firewall rule syntax error with Diffserv Code Point
100%
Description
I am using 2.1.3.
I am getting a syntax error when creating a floating firewall rule with a particular Diffserv Code Point. I want to match on 0x04 (lowdelay, ToS 0x10), but when I choose that option from the dropdown and save the rule, it gives me an error:
[ There were error(s) loading the rules: /tmp/rules.debug:169: syntax error - The line in question reads [169]: match inet proto tcp from any to any port 22 dscp 0x04 (lowdelay, ToS 0x10) flags S/SA queue (qRT,qACK) label USER_RULE]
Any ideas? I'm wondering if the (lowdelay, ToS 0x10) part shouldn't be in the generated rule, but don't know for sure, or what to do about it if that's the problem.
Also, note that a similar syntax error is produced when choosing these other two Diffserv Code Points:
0x01 (reliability, ToS 0x04)
0x02 (throughput, ToS 0x08)
I suspect that whatever the root problem is affects all three of these.
I hope I've explained the problem well enough, but if you need any other information, please let me know.
Thank you!
James Dietrich
Updated by Renato Botelho over 10 years ago
- Status changed from New to Feedback
- % Done changed from 0 to 100
Applied in changeset e792ac36324e3376763699344742d5dc49eab99c.
Updated by Renato Botelho over 10 years ago
Applied in changeset 052dfa9346e716d63fbd85735c4a8784e6ed07e2.
Updated by James Dietrich over 10 years ago
I updated to 2.1.4 a few days ago, and now I do not get this syntax any more.
Thank you!
James
Updated by Renato Botelho over 10 years ago
- Status changed from Feedback to Resolved
- Target version changed from 2.2 to 2.1.4