Bug #7118: ICMP rule with ICMP type "any" fails to load - pfSense - pfSense bugtracker

Actions

Bug #7118

closed

Added by Anonymous almost 8 years ago. Updated almost 8 years ago.

Status:

Resolved

Priority:

High

Assignee:

Category:

Rules / NAT

Target version:

Start date:

01/13/2017

Due date:

% Done:

100%

Estimated time:

Plus Target Version:

Release Notes:

Affected Version:

2.4

Affected Architecture:

amd64

Description

Creating a pass rule with ICMP and ICMP type any prevents the ruleset from being loaded.
The following rule is generated and fails:

pass  in  quick  on $LAN inet proto icmp  from 192.168.1.0/24 to any icmp-type any tracker 1484287460 keep state  label "USER_RULE: Allow ICMP "

I think "icmp-type any" is wrong and should be left out to match all ICMP traffic.

The rule should look like it does in 2.3:

pass  in  quick  on $LAN inet proto icmp  from 192.168.1.0/24 to any tracker 1416374361 keep state  label "USER_RULE: Allow ICMP"

Actions

Also available in: Atom PDF