[Bug 1933117] Re: ufw delete can confuse protocol-specific rule with otherwise matching 'proto any' rule

Mauricio Faria de Oliveira Wed, 03 Nov 2021 11:40:55 -0700

Tested with Bionic, Focal, and Hirsute, with the test steps provided.
All good.


Bionic:
---

Before:

# dpkg -s ufw | grep Version:
Version: 0.36-0ubuntu0.18.04.1

# iptables -L ufw-user-input -n
Chain ufw-user-input (1 references)
target     prot opt source               destination
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0            tcp dpt:22
ACCEPT     tcp  --  2.2.2.2              0.0.0.0/0            tcp spt:2222
ACCEPT     tcp  --  1.1.1.1              0.0.0.0/0            tcp spt:1111

After:

# dpkg -s ufw | grep Version:
Version: 0.36-0ubuntu0.18.04.2

# iptables -L ufw-user-input -n
Chain ufw-user-input (1 references)
target     prot opt source               destination
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0            tcp dpt:22
ACCEPT     tcp  --  1.1.1.1              0.0.0.0/0            tcp spt:1111
ACCEPT     tcp  --  2.2.2.2              0.0.0.0/0            tcp spt:2222


Focal:
---

Before:

# dpkg -s ufw | grep Version:
Version: 0.36-6

# iptables -L ufw-user-input -n
Chain ufw-user-input (1 references)
target     prot opt source               destination
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0            tcp dpt:22
ACCEPT     tcp  --  2.2.2.2              0.0.0.0/0            tcp spt:2222
ACCEPT     tcp  --  1.1.1.1              0.0.0.0/0            tcp spt:1111

After:

# dpkg -s ufw | grep Version:
Version: 0.36-6ubuntu1

# iptables -L ufw-user-input -n
Chain ufw-user-input (1 references)
target     prot opt source               destination
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0            tcp dpt:22
ACCEPT     tcp  --  1.1.1.1              0.0.0.0/0            tcp spt:1111
ACCEPT     tcp  --  2.2.2.2              0.0.0.0/0            tcp spt:2222


Hirsute:
---

Before:

# dpkg -s ufw | grep Version:
Version: 0.36-7.1

Chain ufw-user-input (1 references)
target     prot opt source               destination
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0            tcp dpt:22
ACCEPT     tcp  --  2.2.2.2              0.0.0.0/0            tcp spt:2222
ACCEPT     tcp  --  1.1.1.1              0.0.0.0/0            tcp spt:1111

After:

# dpkg -s ufw | grep Version:
Version: 0.36-7.1ubuntu1

Chain ufw-user-input (1 references)
target     prot opt source               destination
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0            tcp dpt:22
ACCEPT     tcp  --  1.1.1.1              0.0.0.0/0            tcp spt:1111
ACCEPT     tcp  --  2.2.2.2              0.0.0.0/0            tcp spt:2222


** Tags removed: verification-needed verification-needed-hirsute
** Tags added: verification-done verification-done-hirsute

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1933117

Title:
  ufw delete can confuse protocol-specific rule with otherwise matching
  'proto any' rule

To manage notifications about this bug go to:
https://bugs.launchpad.net/ufw/+bug/1933117/+subscriptions


-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1933117] Re: ufw delete can confuse protocol-specific rule with otherwise matching 'proto any' rule

Reply via email to