Firewall Rules migrated but now with current Firmware all Setting Missing

Started by Nephiria, March 21, 2026, 08:46:46 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
March 21, 2026, 08:46:46 PM Last Edit: March 21, 2026, 09:02:16 PM by Nephiria
Hi everyone,

I recently migrated all my rules to Rules New. But today I discovered that all the migrated rules are now gone, apparently due to a firmware upgrade.

New alias entries I created are also gone.

I find this rather suspicious, to be honest. I didn't notice it at first; it wasn't until the Crowdsec website told me that the OPNsense integration wasn't working that I checked again and discovered it.

Ive look on my Firewall : the Snapshot from that Migration i have created on 2026-02-20 19:06
March 21, 2026, 10:02:45 PM #1
Let us ask the crystal ball:

- From which opnsense version started to which new version was the upgrade path ?

- There was no interaction by admin ?
All rules deleted only by a firmware upgrade ?

This sounds exciting. More input would be helpful.
Today at 04:17:25 PM #2
Hello everyone,

As I already mentioned, the migration was performed in February 2026.

I only noticed yesterday after seeing that something was wrong with the Crowdsec alias; it seems to have been reset as well. Everything was set up on the OPNsense around the same time.

And yes, all the migrated rules appear to have been reset. My rules are back in their original location.

I deleted them from the "old location" after the migration, once I had verified that everything was working correctly.

The only changes I made were installing Crowdsec on the OPNsense and firmware updates. I personally suspect that a firmware update might have loaded the old snapshot taken before the migration, which is why everything was reset.

I'm currently on the following firmware version:

OPNsense 26.1.4-amd64
FreeBSD 14.3-RELEASE-p9
OpenSSL 3.0.19

It seems this happened during the upgrade from version 25.xx to 26.xx, but I can't say for sure. I'll probably have no choice but to perform this migration again. I just wanted to report it since these rules weren't deleted by me. I assume it was an automated process, like a firmware upgrade.

Unfortunately, I don't have any further information.
Today at 05:11:36 PM #3
But then you should be able to check the list of snapshots - active and inactive - together with their creation dates, and see if that theory holds. And possible activate the most recent one and boot into that. You have complete control over your snapshots from the UI.
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
Print
Go Up Pages1
User actions