Modify

Opened 2 years ago

#21390 new defect

LuCi: ICMP echo type list incomplete and unordered

Reported by: anonymous Owned by:
Priority: normal Milestone:
Component: luci Version: Chaos Calmer 15.05
Keywords: Cc:

Description

I just added a new "traffic rule" under network -> firewall to allow a firewall zone I call "dmz" to have some necessary icmpv6 traffic.

I've noticed two things in the dropdown list "Match ICMP type"

  1. neighbour-solicitation and neighbour-advertisement are missing in the dropdown (possibly others?)
  2. The list seems to be unordered. Neither by name (that's very visble) nor by ICMPv6 message type.

The missing types can of course be entered manually, but that might be error prone (I had to check the spelling several times).
I believe ordering by "message type" would make more sense, as in that ordering echo request comes before echo reply and router solicitation comes before router advertisement

See here for a short overview and why ordering by message type might be useful: https://en.wikipedia.org/wiki/ICMPv6

For completeness, here is the applicable rule that's created in my /etc/config/firefwall:

config rule
	option enabled '1'
	option target 'ACCEPT'
	option family 'ipv6'
	option proto 'icmp'
	option src 'dmz'
	option name 'dmz-ipv6-icmp'
	list icmp_type 'echo-request'
	list icmp_type 'router-solicitation'
	list icmp_type 'neighbour-solicitation'
	list icmp_type 'neighbour-advertisement'

Attachments (0)

Change History (0)

Add Comment

Modify Ticket

Action
as new .
Author


E-mail address and user name can be saved in the Preferences.

 
Note: See TracTickets for help on using tickets.