Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
24.1 Legacy Series
»
IGNORE Firewall filter issue regarding union of two large aliases (pf tables)
« previous
next »
Print
Pages: [
1
]
Author
Topic: IGNORE Firewall filter issue regarding union of two large aliases (pf tables) (Read 313 times)
sja1440
Jr. Member
Posts: 86
Karma: 6
IGNORE Firewall filter issue regarding union of two large aliases (pf tables)
«
on:
May 03, 2024, 04:23:47 pm »
I have two pf tables (URL table (IPs) aliases in OPNsense). Lets call them T1 and T2 Each containing around 100k ipv4 cidr addresses. The system which generates the lists always does a consolidation using the iprange tool (on a linux system) before publication.
On my OPNsense system I define a new Alias of type "Hosts" (call it UNION) consisting of T1 and T2 (with T1 listed first)
My problem is that filter rules using the alias UNION do not seem to fire for some (all?) ipv4s that are in T2. I have verified that indeed the ipv4 is contained in UNION (both using the GUI and the cli). By the way, " Firewall Maximum Table Entries" is sufficiently large.
Can anyone see what I am doing wrong?
EDIT: This was caused by myself mangling one of my firewall tags. Sorry for the disturbance.
«
Last Edit: May 03, 2024, 07:26:24 pm by sja1440
»
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
24.1 Legacy Series
»
IGNORE Firewall filter issue regarding union of two large aliases (pf tables)