- edited description
- changed title to Administration > Scripts - Firewall scripts saved in GUI are executed twice
Administration > Scripts - Firewall scripts saved in GUI are executed twice
Anything saved in the firewall scripts in the GUI (Administration > Scripts) is runned twice on both MIPS and ARM in 2023.5.
File /tmp/script_fire.sh
is automatically created and also nvram get script_fire
gets populated then anything is executed twice…..
Comments (6)
-
reporter -
repo owner - changed status to new
-
Hi, i have one/two ideas to solve this. Next Year - i will need to test it
-
reporter If I use an iptables rule instead of a ebtables one, the iptables rule is only added once. The firewall script is executed twice, but the iptables rule is only added one time. I didn't check the firewall code, but I suppose either there's a validation process before adding the rule or the rules are flushed and generated from 0 when firewall_start() is called. If I manually start and stop the firewall, iptables rule is added once (good!), ebtables rules is not flushed and added over the existing one so we end up with 2 identical ebtables rules! (Bad) An easy solution would be to add a ebtables -F in firewall_stop() ??? That might cause problems with @M_ars WET patch for the IPv6 bug.
-
reporter Sorry it's start_firewall and stop_firewall and NOT firewall_start
-
Yes, “ebtables -F” would cause problems for WET Mode to catch IPv6. There more i think about my ideas the less i like them
- Log in to comment