Project

General

Profile

Actions

Bug #6472

closed

Disabling NAT (port forward) rule does not disable the associated firewall rule

Added by Kill Bill over 5 years ago. Updated over 4 years ago.

Status:
Resolved
Priority:
Normal
Category:
Rules / NAT
Target version:
Start date:
06/08/2016
Due date:
% Done:

100%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
All
Affected Architecture:
All

Description

As per subject. Worked just fine with 2.2.x.

NAT:

Firewall rule:

# pfctl -vvsr | grep ActiveSync
@248(1418347164) pass in quick on igb1 reply-to (igb1 188.xx.xx.xx) inet proto tcp from any to 10.0.0.10 port = https flags S/SA keep state label "USER_RULE: NAT Mailserver ActiveSync" 

Actions #1

Updated by Chris Buechler over 5 years ago

  • Category changed from Web Interface to Rules / NAT
  • Status changed from New to Confirmed
  • Affected Version changed from 2.3.x to All

It never has. Rule doesn't do anything since there's no matching NAT. I thought there was already a ticket for this, but can't seem to find one.

Actions #2

Updated by Chris Buechler about 5 years ago

  • Target version changed from 2.3.2 to 2.4.0
Actions #3

Updated by Renato Botelho almost 5 years ago

  • Assignee set to Renato Botelho
Actions #4

Updated by Renato Botelho almost 5 years ago

  • Status changed from Confirmed to Feedback
  • % Done changed from 0 to 100
Actions #5

Updated by Jim Pingle almost 5 years ago

  • Status changed from Feedback to Resolved

Works, associated rules are toggled together with the NAT rule when the NAT rule is changed.

Actions #6

Updated by Jim Pingle over 4 years ago

  • Target version changed from 2.4.0 to 2.3.3
Actions

Also available in: Atom PDF