Firewall flowtable should allow ethernet only interfaces
Open, NormalPublicENHANCEMENT
Actions

Assigned To

None

Authored By

	Viacheslav
	Thu, Apr 25, 10:46 AM

Description

The firewall flowtable should allow ethX only interfaces.
It does not need to be set to PPP/BOND/VLAN/WG/etc, as it will work anyway if this interface is part of the forwarding of eth.

set firewall flowtable OFFLOAD interface ethX

Needs to consider/recheck about VLANs as at least it mentioned in the code https://elixir.bootlin.com/linux/v6.6.28/source/include/net/netfilter/nf_flow_table.h#L26

Details

Difficulty level: Unknown (require assessment)
Version: 1.5
Why the issue appeared?: Will be filled on close
Is it a breaking change?: Unspecified (possibly destroys the router)
Issue type: Feature (new functionality)

Related Objects

Mentioned In: T5794: Flowtable with Bond Race

Event Timeline

Viacheslav triaged this task as Normal priority.Thu, Apr 25, 10:46 AM

Viacheslav created this task.

Viacheslav created this object in space S1 VyOS Public.

Viacheslav mentioned this in T5794: Flowtable with Bond Race.

pasik added a subscriber: pasik.Thu, Apr 25, 10:55 AM

Viacheslav updated the task description. (Show Details)Thu, Apr 25, 12:14 PM

Viacheslav changed the subtype of this task from "Task" to "Enhancement".

Viacheslav updated the task description. (Show Details)Thu, Apr 25, 1:16 PM

Firewall flowtable should allow ethernet only interfacesOpen, NormalPublicENHANCEMENTActions

Description

Details

Related Objects

Event Timeline

Firewall flowtable should allow ethernet only interfaces
Open, NormalPublicENHANCEMENT
Actions