diff options
author | Christian Poessinger <christian@poessinger.com> | 2021-04-05 14:41:05 +0200 |
---|---|---|
committer | Christian Poessinger <christian@poessinger.com> | 2021-04-05 15:57:33 +0200 |
commit | bf31d443ad3f4b702dfa614800e2be0b66820874 (patch) | |
tree | 5dc055445e523c069bed324eec79725e9fcf45d3 /gen-interface-policy-templates.pl | |
parent | 3413305c33bc4282c9dd4082e0443df0babbea74 (diff) | |
download | vyatta-cfg-firewall-bf31d443ad3f4b702dfa614800e2be0b66820874.tar.gz vyatta-cfg-firewall-bf31d443ad3f4b702dfa614800e2be0b66820874.zip |
T3456: add missing priority when deleting interface policy
set interfaces ethernet eth1 policy route 'LAN-POLICY-BASED-ROUTING'
set policy route LAN-POLICY-BASED-ROUTING rule 10 destination
set policy route LAN-POLICY-BASED-ROUTING rule 10 disable
set policy route LAN-POLICY-BASED-ROUTING rule 10 set table '10'
set policy route LAN-POLICY-BASED-ROUTING rule 10 source address '192.168.0.119/32'
set policy route LAN-POLICY-BASED-ROUTING rule 20 destination
set policy route LAN-POLICY-BASED-ROUTING rule 20 set table '100'
set policy route LAN-POLICY-BASED-ROUTING rule 20 source address '192.168.0.240'
This was not able to be deleted in only one commit, two commits were required.
vyos@vyos# delete policy
vyos@vyos# delete interfaces ethernet eth1 policy
vyos@vyos# commit
[ policy route LAN-POLICY-BASED-ROUTING ]
Firewall configuration error: Cannot delete rule set "LAN-POLICY-BASED-ROUTING" (still in use)
delete [ policy route LAN-POLICY-BASED-ROUTING ] failed
[[]] failed
Commit failed
copy failed [/opt/vyatta/config/tmp/tmp_7724/work/.unionfs-fuse][/opt/vyatta/config/tmp/new_config_7724/.unionfs-fuse]
Failed to generate committed config
[edit]
vyos@vyos#
(cherry picked from commit dc80ce45f95e243afc6c3d9016f051cfab690846)
Diffstat (limited to 'gen-interface-policy-templates.pl')
-rwxr-xr-x | gen-interface-policy-templates.pl | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/gen-interface-policy-templates.pl b/gen-interface-policy-templates.pl index 991c320..b48b24e 100755 --- a/gen-interface-policy-templates.pl +++ b/gen-interface-policy-templates.pl @@ -140,6 +140,7 @@ sub gen_template { print $tp <<EOF; type: txt +priority: 615 help: $table_help_hash{$table} ruleset for interface allowed: local -a params eval "params=(\$(cli-shell-api listNodes policy $table))" |