Archive > 21.7 Legacy Series

32 character limit in firewall aliases. Can it be increased?

(1/1)

nyctophilia:
As this is my very first post:

Hello everyone,
and thanks to the devs for their awesome work!

I have one small question, as I couldn't find any answer by googling. Is there any reason why aliases are limited to 32 characters in total? Could it be increased or will it break code/performance?

We have a use-case which would require more than 32 chars in the alias name, probably double (64) for good measure.

Thank you in advance!

franco:
Hi there,

Currently, it's pinned to 32 characters in the OS:

https://github.com/opnsense/src/blob/17a61782d3b8d86464d5bdc38483ee8a0ac6a4f9/sys/netpfil/pf/pf.h#L185

I don't know the implications of increasing it and would hope that FreeBSD pioneers this change if the need is big enough. Feel free to open a ticket here:

https://bugs.freebsd.org/bugzilla/

Kristof will probably respond with a more qualified answer than I can.


Cheers,
Franco

nyctophilia:
Hi Franco,

thanks for the pointer, I opened a ticket and will report back if there are any news on this matter!

Greetings
Valentino

0xDEADC0DE:
Here is the link to the bugtracker
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=257270

The bug was closed because it cannot be changed.

Navigation

[0] Message Index