[FS#757] UCI firewall rules with destination ports apply to all traffic instead of just those ports
LEDE Bugs
lede-bugs at lists.infradead.org
Wed May 3 11:17:58 PDT 2017
A new Flyspray task has been opened. Details are below.
User who did this - Michael Marley (mamarley)
Attached to Project - LEDE Project
Summary - UCI firewall rules with destination ports apply to all traffic instead of just those ports
Task Type - Bug Report
Category - Base system
Status - Unconfirmed
Assigned To -
Operating System - All
Severity - High
Priority - Very Low
Reported Version - Trunk
Due in Version - Undecided
Due Date - Undecided
Details - I am running LEDE trunk built today (May 3 2017) on an x86_64 box and having a problem where if I create a firewall rule in UCI that affects forwarding (ACCEPT, REJECT, or DROP doesn't matter) with one or more destination ports specified, the destination ports are ignored when the rule is created. The created iptables rule has no port specified at all, resulting in a rule that applies to all traffic instead of just the desired port(s).
I have attached my /etc/config/firewall file and the output of iptables-save. The offending rule is called "Block-Server-MEI".
One or more files have been attached.
More information can be found at the following URL:
https://bugs.lede-project.org/index.php?do=details&task_id=757
More information about the lede-bugs
mailing list