Closed gsanchietti closed 4 days ago
In nethserver-testing: nethserver-firewall-migration-1.0.0-1.4.g651d7cd.ns7.noarch.rpm
Test case
rwopenvpn
and openvpn
zones have been replaced by *
, which means any zoneissue is not reproducible , reflection zones in port forwards are now consistent with zone names in nethsecurity8
config redirect 'ns_pf1_777'
option src 'wan'
option dest 'lan'
option dest_ip '192.168.56.99'
option proto 'tcp'
option name 'pf1_777'
option src_dport '777'
option reflection '1'
list reflection_zone 'lan'
list reflection_zone 'blue'
list reflection_zone 'rwopenvpn'
list reflection_zone 'openvpn'
list reflection_zone 'ipsec'
option target 'DNAT'
option log '0'
option dest_port '777'
option enabled '1'
Released in nethserver-updates: nethserver-firewall-migration-1.0.1-1.ns7.noarch.rpm
Steps to reproduce
reflection_zone
entries for OpenVPN and IPsec-related zones.Expected behavior
reflection_zone
entries should correctly map the zones:openvpnrw
should be replaced withrwopenvpn
.openvpntun
should be replaced withopenvpn
.ipsectun
should be replaced withipsec
.Actual behavior
reflection_zone
settings in port forward rules incorrectly useopenvpnrw
,openvpntun
, andipsectun
, leading to misconfiguration.Required changes (diff):
Components
NethSecurity Image: 8-23.05.4-ns.1.2.0