10994 – Overmatching NAT rules in firewall GUI

Bug 10994 - Overmatching NAT rules in firewall GUI

Summary: Overmatching NAT rules in firewall GUI

Status:	CLOSED FIXED

Alias:	None

Product:	IPFire
Classification:	Unclassified
Component:	--- (show other bugs)
Version:	2
Hardware:	unspecified Unspecified

Importance:	- Unknown - - Unknown -
Assignee:	Alexander Marx
QA Contact:	Michael Tremer

URL:
Keywords:

Depends on:
Blocks:

Reported:	2015-11-30 16:11 UTC by Michael Tremer
Modified:	2016-03-23 00:43 UTC (History)
CC List:	1 user (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Michael Tremer 2015-11-30 16:11:44 UTC

When a SNAT rule is created and RED is selected as destination network, some other connections get translated as well (for example OpenVPN connections).

This is unexpected behaviour and should be changed in that way that only connections that are actually routed through the RED interface will be translated.

See for reference: http://forum.ipfire.org/viewtopic.php?f=22&t=15319

Comment 1 Alexander Marx 2015-12-07 15:58:57 UTC

Please check this patch.

Matthias already tested the new rules.pl successfully, his problem is solved now.

http://patchwork.ipfire.org/patch/168/

Comment 2 Matthias Gutmann 2015-12-07 16:03:19 UTC

Thx Alexander for the work! As you said, everything is working fine now.

Regards 
  Matthias