Help, Locked out of web gui, easyrule on console not working

erasedhammer

Web gui randomly timed out on me in the middle of configuring some wan firewall rules, now I can't get back into the GUI or access ANY other device in the network.
I have restarted at least 5 times by now.

The filter logs from the console say:
Jul 31 13:56:47 ngfw filterlog: 335,,,1596214683,lagg0.100,match,block,in,4,0x0,,128,31273,0,DF,6,TCP,48,10.10.0.2,10.10.0.1,1050,443,0,S,1404660349,,64240,,mss;nop;nop;sackOK

But I have added the easyrule:
Easyrule pass lan TCP 10.10.0.2 10.10.0.1 443

And yet it still logs as blocking my connection???
What's going on here?

I refuse to reset to factory settings, it's the 5th time this month I've had to reset, and restoring a config does not work for me 100% (things like firewall rules being put under the wrong interface, snort corrupting itself, ect)

erasedhammer

Found the issue, partly my fault.

Got access to the GUI via a different vlan.
Turns out easyrules get added to the BOTTOM of the rule list, so if someone were to have a redundant block rule, the easyrule would never get used because traffic would hit the block rule first.
This is different from the GUI, cause it sends newly created rules to the TOP of the list.

Seems weird why easyrules would be applied in a different location....