Re: [OpenWrt-Tickets] [OpenWrt] #20380: firewall zone name length of 12 characters or more breaks all networking

Thu, 29 Oct 2015 07:15:13 -0700 

#20380: firewall zone name length of 12 characters or more breaks all networking
--------------------------+-----------------------------------
  Reporter:  tim@…        |      Owner:  developers
      Type:  defect       |     Status:  new
  Priority:  high         |  Milestone:
 Component:  base system  |    Version:  Barrier Breaker 14.07
Resolution:               |   Keywords:
--------------------------+-----------------------------------

Comment (by Damian Kaczkowski):

 {{{
 config interface 'lan_protected'
         list ifname 'eth0.3'
         option force_link '1'
         option type 'bridge'
         option proto 'static'
         list ipaddr '10.111.111.1/24'
 }}}

 {{{
 config zone
         option name 'lan_p'
         list network 'lan_protected'
         option input 'ACCEPT'
         option output 'ACCEPT'
         option forward 'ACCEPT'
         option family 'ipv4'
 }}}
 fw3 reload
 {{{
  * Populating IPv4 filter table
    * Zone 'lan'
    * Zone 'wan'
    * Zone 'lan_p'
    * Rule 'Allow-DHCP-Renew'
    * Rule 'Allow-Ping'
    * Rule 'Allow_DNS_from_IPSec'
    * Rule '500_udp_wan_INPUT_ACCEPT'
    * Rule '4500_udp_wan_INPUT_ACCEPT'
    * Rule 'esp_wan_INPUT_ACCEPT'
    * Forward 'lan' -> 'wan'
 (null) v4: interface name `br-lan_protected' must be shorter than IFNAMSIZ
 (15)
 }}}

 ifconfig - notice "br-lan_protecte"
 {{{
 br-lan_protecte Link encap:Ethernet  HWaddr 4C:5E:0C:E1:8A:95
           inet addr:10.111.111.1  Bcast:10.111.111.255  Mask:255.255.255.0
           UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
           RX packets:0 errors:0 dropped:0 overruns:0 frame:0
           TX packets:8 errors:0 dropped:0 overruns:0 carrier:0
           collisions:0 txqueuelen:0
           RX bytes:0 (0.0 B)  TX bytes:808 (808.0 B)
 }}}

 ip addr
 {{{
 8: br-lan_protecte: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc
 noqueue state UP group default
     link/ether 4c:5e:0c:e1:8a:95 brd ff:ff:ff:ff:ff:ff
     inet 10.111.111.1/24 brd 10.111.111.255 scope global br-lan_protecte
        valid_lft forever preferred_lft forever
     inet6 fe80::4e5e:cff:fee1:8a95/64 scope link
        valid_lft forever preferred_lft forever
 }}}

 dnsmasq will follow real interface name (br-lan_protecte) and config such
 as
 {{{
 config dhcp 'lan_protected'
         option interface 'lan_protected'
         (...)
 }}}
 won't work too.

 r45314

--
Ticket URL: <https://dev.openwrt.org/ticket/20380#comment:8>
OpenWrt <http://openwrt.org>
Opensource Wireless Router Technology
_______________________________________________
openwrt-tickets mailing list
[email protected]
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-tickets

Reply via email to