Opened 4 years ago

Last modified 4 years ago

#14904 new defect

Custom chain "forwarding_lan" is never reached

Reported by: ian@… Owned by: developers
Priority: normal Milestone: Barrier Breaker 14.07
Component: base system Version: Attitude Adjustment 12.09
Keywords: firewall custom forwarding Cc:


Attitude Adjustment (12.09, r36088)

I needed some custom rules to block sets of addresses at certain times of day. After looking at the time module I settled on having rules in the forwarding_lan chain maintained by cron.

The forwarding_lan chain is referenced from the zone_lan_forward chain, but the forwarding_lan chain is never reached:

Chain zone_lan_forward (1 references)
num  target          prot opt   source        destination
1    zone_wan_ACCEPT  all  --  anywhere       anywhere
2    forwarding_lan   all  --  anywhere       anywhere
3    zone_lan_REJECT  all  --  anywhere       anywhere

Rule 1 makes rules 2 and 3 redundant. I don't understand where Rule 1 comes from. Manually deleting it makes everything work properly.

Attachments (0)

Change History (2)

comment:1 Changed 4 years ago by Catalin Patulea <cronos586@…>

In r39142 the zone_lan_forward chain looks like this:

Chain zone_lan_forward (1 references)
target     prot opt source               destination         
forwarding_lan_rule  all  --  anywhere             anywhere             /* user chain for forwarding */
zone_wan_dest_ACCEPT  all  --  anywhere             anywhere             /* forwarding lan -> wan */
ACCEPT     all  --  anywhere             anywhere             ctstate DNAT /* Accept port forwards */
zone_lan_src_REJECT  all  --  anywhere             anywhere            

So maybe just update to a newer version.

comment:2 Changed 4 years ago by jow

  • Milestone changed from Attitude Adjustment 12.09 to Barrier Breaker 14.07

Milestone Attitude Adjustment 12.09 deleted

Add Comment

Modify Ticket

as new .

E-mail address and user name can be saved in the Preferences.

Note: See TracTickets for help on using tickets.