Re: [Vyos-developers] Config validator bug won't let me make a firewall rule with a source network-group and a destination address-group.

Mon, 14 Dec 2015 12:54:36 -0800 

Turns out that this was user error.   I reused a rule number by accident.

On Mon, Dec 14, 2015 at 9:47 AM, Daniil Baturin <dan...@baturin.org> wrote:

>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA256
>
> Hi Jeff,
>
> I seem to remember something about IPset or iptables having troubles
> with rules where both source and destination are groups.
> However, I think this problem doesn't exist anymore.
>
> I'm still trying to figure out what's wrong with that config that fails
> to load (for me it takes forever to load, which complicates things),
> I'll try this on that test VM and let you know.
>
> On 12/14/2015 08:14 PM, Jeff B wrote:
> > set firewall name WANtoLAN rule 10 description 'Allow SMTPS from Google
> to our MTA'
> > set firewall name WANtoLAN rule 10 destination port '587'
> > set firewall name WANtoLAN rule 10 protocol 'tcp'
> > set firewall name WANtoLAN rule 10 source group network-group nets-google
> > set firewall name WANtoLAN rule 10 destination group address-group
> hosts-smtp
>
>
> - --
> #!/usr/bin/env perl
> @a=split(//, "daniil @ baturin  .  org" );# Daniil Baturin
> @b=split(//,q/Px%!+o0Q6lh*7dp$.@8#%|y{/);while($i<24){$_.=
> chr((ord(@b[$i])-ord(@a[$i])+62)%94+32);$i++};print"$_\n"#
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v2
>
> iQIcBAEBCAAGBQJWbtZrAAoJEEcm35UR4K8fdDkP/39zTcdYQ35X7RO2QiQuW2vR
> QK838thCdTt/NEM8rB2reeCZZ6bvcl8iKhGwuqDaCcsFYLg5LOu+QpGfToZPZLlM
> /F/FDHKtconKG2B/oZH1YvX4UTcvjX+LyOUZObvLQPKi4ZGjokEG63H9MbJF6MyJ
> v9YiW3G2vbklAB4MCeUWr1K6YNr4mdmXUwvcJ46dFh/fOvRggWl0hrOufee6eata
> 8IGk5ZL2FS5XKquKf+PvW6FJpOyVdMMjhZ13P1+xjH3y9hTzt0GlQG2rT9Bv7eD4
> ne3JUQ5Cv63Azag2OuVf3vLnJKXyWwQKB28BVPZviE3T9cdyqgbQnpMGxAJCECYb
> +s0EL23G/WgZhS9UZD1JHoCeBwGctId9Cg+096nfxlamq8957EbGtq5Yn9gScFvj
> 6SjAjQ+kuvqTx4OtPgIFOVbmUPab+jmQsdZCBUDx1JlXa+FagZP8cTulE8kZYoya
> zQY1jMsV/ABcryLNNCf1XF0bLwy9yA32LecOawSXmf8mqmKJ0MTRQ8pz73aX07JQ
> oUV48wB6zSswb390k38qi08kQJvXlPKNHjXTes5oruFNqET85dTvzISXQ02XOzO/
> W3ksp8Q5GNeu1XyhfUz4iHc5rFgETQfv/jBn2wN87OVYdyqgYV9/f3OJrvAEZ5/J
> Z6VJxjUzMBY9hmAH3/8c
> =UrYk
> -----END PGP SIGNATURE-----
>
>
> _______________________________________________
> Vyos-developers mailing list
> Vyos-developers@lists.tuxis.nl
> https://lists.tuxis.nl/listinfo/vyos-developers
>

_______________________________________________
Vyos-developers mailing list
Vyos-developers@lists.tuxis.nl
https://lists.tuxis.nl/listinfo/vyos-developers

Reply via email to