Bug #6982
closedNested Aliases with FQDNs do not populate parent table in some cases
100%
Description
In some cases a nested alias containing FQDNs does not populate the parent table until filterdns runs again at its interval.
Can be duplicated by creating an alias list similar to the attached then Status > Filter Reload and click Reload Filter.
Note that groupone will not contain any entries from grouptwo (or the nested fqdnnest11 or fqdns).
Examining those three tables reveals they are still populated with data.
As soon as filterdns runs again everything is populated.
This can be hastened by editing the filterdns interval in System > Advanced and saving. This restarts filterdns and results in an immediate run, populating the parent table.
Now remove firmware.netgate.com from grouptwo and reload the filter. All of the entries from grouptwo will now be present instead of none with the exception of fqdns and fqdnnest11. Those will not be in the table until filterdns fires again.
There are certain cases where editing aliases results in a proper, full reload and certain cases where editing them requires waiting for filterdns to run again. I have not been able to identify what does what there.
Files
Updated by Chris Linstruth almost 8 years ago
I should add that the only alias present in any rules is groupone. It is on LAN pass IPv4 any from LAN net destination groupone.
Updated by Chris Linstruth almost 8 years ago
- File aliases-config-pfSense-a.localdomain-20161206165824.xml aliases-config-pfSense-a.localdomain-20161206165824.xml added
Here is the aliases export I am using to test. It should match the screenshot above.
Updated by Renato Botelho almost 8 years ago
- Status changed from New to Feedback
- % Done changed from 0 to 100
Applied in changeset 5d1cf6f5cf85c6371078e288172da1e05df1380c.
Updated by Chris Linstruth almost 8 years ago
This is working well for me with changeset applied using system patches on 2.3.2_1 that I was using in my initial testing. Also imported test alias set into 2.4. Working there too.
Updated by Renato Botelho almost 8 years ago
- Status changed from Feedback to Resolved
Updated by Jim Pingle almost 8 years ago
- Status changed from Resolved to Assigned
This fix broke port aliases.
With this commit, port aliases are empty:
LDAP_Ports = "{ }"
Revert the commit and the ports alias works again.
LDAP_Ports = "{ 389 636 }"
Updated by Renato Botelho almost 8 years ago
- Status changed from Assigned to Feedback
Applied in changeset 631217f488c682ce4ffa8af5d0c54b03c016af46.
Updated by Jim Pingle almost 8 years ago
- Assignee changed from Renato Botelho to Chris Linstruth
Port aliases work again with that last commit. Will leave it open waiting for feedback to make sure the original issue is still solved.
Updated by Chris Linstruth almost 8 years ago
This looks good to me.
Thought there was still an issue but it just turns out one of my test fqdns (www.cnn.com) has a short TTL and seems to cycle between returning 1 and 4 A records here. Table updating appropriately on filterdns runs.
Port aliases look good too. Even nested.
Thanks!
Updated by Jim Pingle almost 8 years ago
- Status changed from Feedback to Resolved
Updated by Jim Pingle almost 8 years ago
- Target version changed from 2.4.0 to 2.3.3