Rule issue after upgrade



  • Hello,

    I have noticed that since the update from 2.4.3_p1 to 2.4.4 many firewall rules are no longer valid. All own rules for blocking for example does not pull for certain times. Even a block rule for an IP has no effect.

    This is a BUG from my point of view !!! ... and should be fixed quickly. I suspected that the update was not working correctly. So I reinstalled the firewall with 2.4.4. The rules were restoed from a backup (not the hole file only some files).

    Protocol ANY / ANY BLOCK an internal IP = no effect

    Rows of the rules are:
    automatically generated vpn pfblocker
    own allowed rules for specific IPs or FQDNs
    Block rules manually
    Time shift rules
    Limiter rules with limiters and queues

    First, I noticed that everyone in the network can draw the full bandwidth. Now no own rules are functioning anymore.

    WHAT'S GOING ON THERE?


  • Rebel Alliance Developer Netgate

    I split this into its own thread since it wasn't really related to the one where you posted it.

    There are no known issues anything like what you report. It's possible that your upgrade did not complete properly, or there may be an issue in your pfBlockerNG setup causing it.

    The first thing I would do is remove pfBlockerNG and then install pfBlockerNG-devel and force and update in there to see if the behavior corrects itself.

    If not, then you'll need to provide a lot more information about your rules before and after the upgrade. Not just descriptions, but screenshots, /tmp/rules.debug, config.xml, etc.