summaryrefslogtreecommitdiff
path: root/src/op_mode
diff options
context:
space:
mode:
authorViacheslav Hletenko <v.gletenko@vyos.io>2023-04-10 17:55:48 +0000
committerViacheslav Hletenko <v.gletenko@vyos.io>2023-04-10 17:55:48 +0000
commit8ef944b854de54bce95b91257d7a3cd22ed48064 (patch)
tree0607ce848b329537b97e692ab1efbfb05000aea4 /src/op_mode
parent3593ecfa51a6508b6a8b8170dde10db261ab5609 (diff)
downloadvyos-1x-8ef944b854de54bce95b91257d7a3cd22ed48064.tar.gz
vyos-1x-8ef944b854de54bce95b91257d7a3cd22ed48064.zip
T5065: Add verify for firewall port-group and port
We cannot use both 'port' and 'port-group' for the same direction in one rule at the same time Otherwise it generates wrong rules that don't block anything set P_pgrp { type inet_service flags interval auto-merge elements = { 101-105 } } chain NAME_foo { tcp dport 22 tcp dport @P_pgrp counter drop comment "foo-10" counter return comment "foo default-action accept" }
Diffstat (limited to 'src/op_mode')
0 files changed, 0 insertions, 0 deletions
generated by cgit v1.2.3 (git 2.39.1) at 2024-10-03 11:16:14 +0000