Bug 10994

Summary: Overmatching NAT rules in firewall GUI
Product: IPFire Reporter: Michael Tremer <michael.tremer>
Component: ---Assignee: Alexander Marx <alexander.marx>
Status: CLOSED FIXED QA Contact: Michael Tremer <michael.tremer>
Severity: - Unknown -    
Priority: - Unknown - CC: m.gutmann
Version: 2   
Hardware: unspecified   
OS: Unspecified   

Description Michael Tremer 2015-11-30 16:11:44 UTC 
When a SNAT rule is created and RED is selected as destination network, some other connections get translated as well (for example OpenVPN connections).

This is unexpected behaviour and should be changed in that way that only connections that are actually routed through the RED interface will be translated.

See for reference: http://forum.ipfire.org/viewtopic.php?f=22&t=15319
Comment 1 Alexander Marx 2015-12-07 15:58:57 UTC 
Please check this patch.

Matthias already tested the new rules.pl successfully, his problem is solved now.

http://patchwork.ipfire.org/patch/168/
Comment 2 Matthias Gutmann 2015-12-07 16:03:19 UTC 
Thx Alexander for the work! As you said, everything is working fine now.

Regards 
  Matthias