This topic contains 7 replies, has 5 voices, and was last updated by 
-
Posts
-
Hello,
i am adding port forwarding rules in the “VIRTUAL SERVERS” tab.
After around 30 rules, when i add a new rule, it is shown in the table, but is actually overriding the last rule i have added.
However, in the “view” window, i can see all the rules (even if they do not appear in the table.)Finally, the rules that do not appear in the table, are not surviving a reboot…
Is this a known bug?
Am i doing something wrong?
I am using Release 3.3.2
Thanks
NikosHello,
just to report on my problem.in this folder /var/register/system/net/router/PAT
there is a folder for each rule in the “virtual servers”
the rules had reach the number 100 (although there were big gaps between the numbers)
Every new rule that was created from the web interface in the virtual servers tabs, was overwriting the contents of the “100” folder.so, i moved the folder to lower numbers and then the creation of new rules was working again.
Disclaimer: i am not sure if this is the correct action to resolve this problem, but this worked for me.
cheers
nikos@nikos.frangakis wrote:
Hello,
just to report on my problem.in this folder /var/register/system/net/router/PAT
there is a folder for each rule in the “virtual servers”
the rules had reach the number 100 (although there were big gaps between the numbers)
Every new rule that was created from the web interface in the virtual servers tabs, was overwriting the contents of the “100” folder.so, i moved the folder to lower numbers and then the creation of new rules was working again.
Disclaimer: i am not sure if this is the correct action to resolve this problem, but this worked for me.
cheers
nikosOk, mate. Thanks for your work.
Couple of questions. . .
Do you have to reboot for the directory change to take effect?
If you have rules that you have set up over the top of one another do they have to be removed and re-created?@sshira wrote:
Couple of questions. . .
Do you have to reboot for the directory change to take effect?
If you have rules that you have set up over the top of one another do they have to be removed and re-created?Answered my own questions:
1. When you change the directories path it takes affect immediately from the screen’s perspective, however what is actually loaded in the IPTables (if you click on view) won’t change until you reboot.2. The rules that set up and copied over location 100 are interesting, they exist in the running config only (not on disk). So to handle this I went in and added the ones I was missing which puts duplicate entries at the bottom of the view, you may notice these do not get any traffic as the rules that are higher on the list (and don’t exist in the “Startup config”) are taking the traffic.
I can not reboot my firewall during the day, and have to be careful of downtime even at night, so the next time I get to reboot I expect all will be well, and still exist. Also, I believe that I could restart IPTables to get it to load from the “Startup Config” again without restarting the whole firewall, but I’ll have to test that later as well.
It seems to me that if we have the ability to delete on the fly there should be a mechanism to reload at any time as well, i’ll have to look in to that.hi,
i have to revive this topic, because this problem reappeared. The difference now is that the rules have not reached the number 100. Nevertheless, now every new rule, overrides the last inserted rule.
Any suggestions on how to solve this?
Zeroshell 3.8.2
-
This reply was modified 1 year, 6 months ago by
nikos.frangakis.
I tried on three zeroshell 3.9.0 updates from 3.8.2 updated and I did not notice any problems, the rules are created correctly
Hello Nikos,
I have same problem , I make online update to version 3.9.3 , but the problem still exists. On clean installation , no problem with port forwarding problem. I need to resolve problem on my working system.
What you want mean – “moved the folder to lower numbers”I try to rename number to 1,2,3…. , without restarting zeroshell, but problem not solved.
-
This reply was modified 1 year, 6 months ago by
You must be logged in to reply to this topic.