[FS#4258] firewall4 does not honor rule denying access to WAN zone

OpenWrt Bugs openwrt-bugs at lists.openwrt.org
Mon Feb 7 00:48:59 PST 2022


THIS IS AN AUTOMATED MESSAGE, DO NOT REPLY.

A new Flyspray task has been opened.  Details are below. 

User who did this - John (darksky4) 

Attached to Project - OpenWrt/LEDE Project
Summary - firewall4 does not honor rule denying access to WAN zone
Task Type - Bug Report
Category - Base system
Status - Unconfirmed
Assigned To - 
Operating System - All
Severity - Medium
Priority - Very Low
Reported Version - Trunk
Due in Version - Undecided
Due Date - Undecided
Details - I built an image from master just now and created this firewall rule to deny WAN access to a particular client. The rule is active yet I can still get out to the WAN from that client. Under a pure fw3 image built from a few days ago, the rule worked as expected.

config rule
  option src 'lan'
  option target 'REJECT'
  option name 'Deny WAN access'
  option dest 'wan'
  list proto 'all'
  list src_ip '10.9.8.100'
  list src_ip '10.9.8.112'

Supply the following if possible:
 - Device problem occurs on = bcm2711/rpi4b
 - Software versions of OpenWrt = latest from master (3343ca7e68) 

More information can be found at the following URL:
https://bugs.openwrt.org/index.php?do=details&task_id=4258

You are receiving this message because you have requested it from the Flyspray bugtracking system.  If you did not expect this message or don't want to receive mails in future, you can change your notification settings at the URL shown above.



More information about the openwrt-bugs mailing list