Old rules deprecation

Started by dbd, January 29, 2026, 01:55:03 PM

Previous topic - Next topic
Print
Go Down Pages 1 2
User actions
Today at 12:26:44 PM #15 Last Edit: Today at 12:30:55 PM by OPNenthu
One more thing: the hyperlinks in Firewall->Groups continue to point to the legacy Rules UI which is now empty.  I'm guessing that's the case in more places wherever links exist to 'firewall_rules.php' or 'firewall_rules.php?if=<name>'.

Since the legacy rules UI is going to be around for a long while still, could we have an option to update all the links in OPNsense to point to the new UI?  Or is that not really in the cards because the links are static?
Today at 12:31:32 PM #16
Can you add a ticket for this? There's two spots actually.

src/opnsense/mvc/app/views/OPNsense/Firewall/group.volt:                                return '<a href="/firewall_rules.php?if='+row.ifname+'">'+row.ifname+'</a>';
src/opnsense/mvc/app/views/OPNsense/Interface/overview.volt:                                    $a_fw = $anchor.clone().attr('href', '/firewall_rules.php?if=' + row.identifier);

Not sure what to do.  We can't make a single decision here and removing the links may be better.


Cheers,
Franco
Today at 12:46:28 PM #17
Today at 01:18:16 PM #18
Quote from: Seimus on January 29, 2026, 06:48:34 PMWould it be possible to have the Statistic section in a single row if I expand its section?
https://github.com/opnsense/core/issues/9674

Regards,
S.
Networking is love. You may hate it, but in the end, you always come back to it.

OPNSense HW
APU2D2 - deceased
N5105 - i226-V | Patriot 2x8G 3200 DDR4 | L 790 512G - VM HA(SOON)
N100   - i226-V | Crucial 16G  4800 DDR5 | S 980 500G - PROD
Today at 05:41:53 PM #19 Last Edit: Today at 06:05:46 PM by julsssark
Could rule # be displayed in the statics column (or its own column or within the details dialog)? It would make downstream log management more convenient. Today, you need to trigger a rule and catch it in live view, or do some text file manipulation. If it's a feasible request, I can open an issue and help test.
Today at 05:48:11 PM #20
If you mean the rule refid (aka whats used in the live log), that is volatile and only exists inside the lifetime of the log. It cannot be added to the rules.
Hardware:
DEC740
Today at 05:56:10 PM #21
Quote from: Monviech (Cedrik) on Today at 05:48:11 PMIf you mean the rule refid (aka whats used in the live log), that is volatile and only exists inside the lifetime of the log. It cannot be added to the rules.

Wait what?  Do you mean this?

You cannot view this attachment.

I think I wrote a post on another thread where I suggested to use the rule ID for parsing firewall logs with Monit and nobody corrected me! Uff.

Do rules in OPNsense have a persistent identifier at all?
Today at 05:59:00 PM #22
Oh thats the UUID I think, you can just use the bootgrid menu to unhide it. At the top right next to the number dropdown that changes how many lines can be seen (50).
Hardware:
DEC740
Today at 06:03:24 PM #23
Phew. :)

I'm not sure if that's what @julsssark is asking for, but I got nervous with your response.  Thanks.
Today at 06:11:03 PM #24
There is some kind of volatile ID inside the live log that changes and out of that the current rule reference is generated (aka the UUID). So you can map from the live log to the firewall rule (the firewall rule uuid will always be the same), but you cannot map from the firewall rule to a specific livelog ID.

But not 100% sure here, just somethibg I picked up a while ago I think.
Hardware:
DEC740
Today at 06:38:47 PM #25
Unless I'm mistaken, I'm seeing that the rule UUIDs have changed since I migrated my rules to the new UI.  They no longer match the UUIDs I had used in my Monit tests.

Do those UUIDs persist between config imports and OPNsense updates?
Today at 06:47:39 PM #26 Last Edit: Today at 06:49:28 PM by julsssark
I was looking for "rulenr" as displayed in the live-view details dialog. I use them in Grafana for log analysis of specific rules.
Print
Go Up Pages 1 2
User actions