4. Bug? User aliases defined as aliases and tables

Bug? User aliases defined as aliases and tables

  • R

    It looks like user aliases are defined twice within rules.debug.  First, as aliases at the beginning of the file:

    User Aliases

    Apple = "{ 17.250.248.95 17.250.236.65 69.225.175.91 }"
    BcastAndMcast = "{ 248.0.0.0/5 255.0.0.0/8 }"

    Then later as tables

    User-defined aliases follow

    table <bcastandmcast>{  248.0.0.0/5 255.0.0.0/8 }
    table <apple>{  17.250.248.95 17.250.236.65 69.225.175.91 }

    Within rules, the tables are used rather than the aliases:

    block in quick on $wan from <bcastandmcast>to any  label "USER_RULE: Block suspicious bcasts and mcasts"

    Is this a bug that these User defined values are defined twice, in two different ways?  Or am I missing something?</bcastandmcast></apple></bcastandmcast>

    0
  • S

    Not a bug really.  Just cosmetic.  Patches accepted to fix.

    0
  • H

    I don't think this is a bug. It was required for some special kind of aliases/special condition (not sure anymore) but the table-definition has been added to handle this (I think it was related to portsaliases).

    0
  • S

    In addition we load the ruleset with pfctl -o which optimizes the ruleset and removes duplicates.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy