Enhancement #3380

Hairpin NAT from blue and orange

Added by Filippo Carletti over 3 years ago. Updated over 3 years ago.

Status:CLOSEDStart date:
Priority:NormalDue date:
Assignee:-% Done:

100%

Category:nethserver-firewall-base
Target version:v6.7
Resolution: NEEDINFO:No

Description

When a port forwarding should be activated from green (hairpin nat) it could be enabled also from blue and orange if those zones are configured.


Related issues

Duplicates NethServer 6 - Feature #3269: Access DMZ host from green through public IP CLOSED

Associated revisions

Revision c491e672
Added by Filippo Carletti over 3 years ago

firewall: hairpin nat from blue and orange. Refs #3380

History

#1 Updated by Filippo Carletti over 3 years ago

  • Status changed from NEW to TRIAGED
  • Assignee set to Filippo Carletti
  • % Done changed from 0 to 20

Here's a patch for 50pf:

+        if (defined($ndb->blue)) { push @sources, 'blue'; }
+        if (defined($ndb->orange)) { push @sources, 'orang'; }

#2 Updated by Filippo Carletti over 3 years ago

  • Status changed from TRIAGED to ON_DEV
  • % Done changed from 20 to 30

#3 Updated by Filippo Carletti over 3 years ago

  • Status changed from ON_DEV to MODIFIED
  • Assignee deleted (Filippo Carletti)
  • % Done changed from 30 to 60

#4 Updated by Filippo Carletti over 3 years ago

  • Status changed from MODIFIED to ON_QA
  • % Done changed from 60 to 70

In nethserver-testing:
nethserver-firewall-base-2.10.3-1.1.gc491e67.ns6.src.rpm
nethserver-firewall-base-ui-2.10.3-1.1.gc491e67.ns6.noarch.rpm

Test case after update:
1. system with a blue or orange: look for port fwds from blue/orang in /etc/shorewall/rules
2. system with green and red only: nothing should change

#5 Updated by Nicola Rauso over 3 years ago

  • Assignee set to Nicola Rauso

#6 Updated by Nicola Rauso over 3 years ago

  • Status changed from ON_QA to VERIFIED
  • Assignee deleted (Nicola Rauso)
  • % Done changed from 70 to 90

Test case after update:
1. system with a blue or orange: look for port fwds from blue/orang in /etc/shorewall/rules
2. system with green and red only: nothing should change

Tested: OK

#7 Updated by Giacomo Sanchietti over 3 years ago

  • Status changed from VERIFIED to CLOSED
  • % Done changed from 90 to 100
Releases in
  • 6.7/nethserver-updates: nethserver-firewall-base-2.10.4-1.ns6.noarch.rpm, nethserver-firewall-base-ui-2.10.4-1.ns6.noarch.rpm
  • 7.2/nethserver-testing: nethserver-firewall-base-2.10.4-1.16.g50d3101.ns7.noarch.rpm, nethserver-firewall-base-ui-2.10.4-1.16.g50d3101.ns7.noarch.rpm

#8 Updated by Giacomo Sanchietti about 3 years ago

  • Duplicates Feature #3269: Access DMZ host from green through public IP added

Also available in: Atom PDF