Cannot Edit Firewall Rules

johnsoga · Aug 3, 2024, 12:05 AM

Seems all of a sudden I can no longer edit firewall rules. No matter what interface I choose WAN, LAN, etc. or how I try and edit the rules i.e click the pencil or double click the rule. It basically just tries to create a brand new rule instead of allowing me to edit the existing one. No idea what I did that have caused this or where to begin troubleshooting.

The only thing I did recently that I "had no idea what it would do" was run " certctl rehash" as I was facing an issuing trying to install the NUT package, every time i would try and install it it would just bring me back to the installed packages page. But running that command seemed to fix that issue.

Open to any pointers on how to begin troubleshooting this.

stephenw10 · Aug 3, 2024, 2:09 AM

Mmm certctl rehash should have no effect on that.

Is anything logged when you try to edit a rule?

Can you edit anything? A NAT rule? An alias?

What pfSense version?

Steve

johnsoga · Aug 3, 2024, 2:32 AM

@stephenw10 Where would I go to check what/if anything is logged when rules are changed? As for version I'm on 24.03. The mystery definitely ensues here. I got annoyed at myself assuming I did something foolish and so decided (based off no similarities to my issue shown in google searches) to just to a clean install. USB reinstalled (took a backup before hand) and then did a reinstall and restore.

Somehow short after the restore the same problem has occured once again. I was briefly happy, I have an SSH rule double clicked and it showed as expected (its details) and I could edit them. I added a NAT rule and then decided to check again and now I'm back at square one. Once again cannot edit rules can only make new ones or delete existing ones. Just confirmed equally cannot edit NAT (Port Forward Rules) along with the normal Interface rules or aliases.

So I would say now I'm desperate, no point in doing another wipe and restore if the problem is just going to creep back. Looking for any help on troubleshooting to avoid a desperate wipe and start from scratch.

johnsoga · Aug 3, 2024, 2:34 AM

For what its worth the same damn problem with packages is back too. I tried to install nmap and every time i try it just brings me back to the installed packages tab. This is definitely weird.

stephenw10 · Aug 3, 2024, 11:38 AM

I'd first just check in the main system logs: Status > System Logs.

Is it logging any event when it fails to edit a rule? For example is it logging a bad config file and rolling back?

For that matter is it logging anything? Or is it unable to log at all for some reason maybe?

Are you using the admin user? Have you changed the user permissions at all?

Steve

johnsoga · Oct 7, 2024, 1:29 AM

Forgot to update this once the problem was "fixed" if you want to call it that. I ended up finding someone with a similar issue here

So as they did I tried using safari and to my surprise everything works as expected. Idk if its a random problem with Firefox or what, but yea I'm lazy so I've just switched to using safari for accessing the GUI for now. Maybe I'll try Firefox again sometime later.

stephenw10 · Oct 7, 2024, 1:23 PM

Hmm, weird. I use Firefox for that all the time and have never hit that. I imagine you must have the bad cookie that other user found.

johnpoz · Oct 7, 2024, 3:03 PM

Yeah I am pretty much an exclusive firefox user, while I do have other browsers, edge and chrome installed. I almost never use them other than odd testing of something here or there.

I only ever interact with the pfsense gui using firefox and have never ran into any sort of issue editing anything.

Currently using 131 of firefox.