[Solved] Rules are applied to all IP Alias IPs

[banym]

I am stumbling over a strange behaviour with one firewall with NAT and port forwarding.

I added an additional ip alias to an existing configuration. The firewall had only one ip before and some port forwarding NAT rules defined.

All these rules are applied to the new ip alias as well, this shouldn't because they are defined for the WAN address only.  This means on the new ip alias ip i can access the same port forwarding that was defined for my wan address. Thats wrong and should not be working.

If I now try to add a port forwarding for the new ip alias the traffic still is forwarded to the wrong internal IP.
Even if there is no rule for the new ip alias as destination traffic gets forwarded... that's not cool.

I upgraded to the latest 19.1.9 same behaviour.

Had someone faced a similar behaviour?

[zimbawe998@mail.com]

Hi,
We had the same behaviour on firewall rules.
We we changed with ip address everytinghs gone.
We used 19.7.2 on virtual
Strange

[banym]

I could reproduce the behavoir and "fix" it in the end.

The filewall had one IP from a /24 Network assigned as WAN IP.
An additional IP was added as IP Alias from the /24 Network.
The NAT Rules defined for the WAN interface where applied to the new IP Alias. This should not have happened. There where specific NAT Rules defined for the new IP Alias. They did not chang the wrong behavior.
I rebooted the box twice and then it worked for me as configured.