proxmox/proxmox-firewall
1
0
Fork 0
mirror of https://git.proxmox.com/git/proxmox-firewall.git synced 2026-03-28 02:30:34 +00:00
Code Issues Projects Releases Packages Wiki Activity
No description
137 commits 1 branch 0 tags 338 KiB
Find a file
Exact
Stefan Hanreich e5f75702c8 firewall: fix ipset lookup for auto-generated ipam ipsets 
In commit 1a917517 the ipset lookup function was adapted such that it
can support both legacy ipset names as well as the new format that
includes scopes. During this change, the function that performs the
lookup for the SDN scope only included ipsets from the SDN
configuration, but not the IPAM configuration. While the IPAM ipsets
were correctly generated, the firewall refused to generate rules that
included the IPAM ipsets, since they were not found in the lookup
function. Adapt the lookup function to consider the IPAM ipsets as
well to fix this issue.

Also add respective rules to the integration tests, which would have
caught this issue.

Reported in the forum by a user [1]

[1] https://forum.proxmox.com/threads/sdn-aliases-not-found-by-firewall.180549/

Fixes: 1a917517
Signed-off-by: Stefan Hanreich <s.hanreich@proxmox.com>
Link: https://lore.proxmox.com/20260212084832.63278-3-s.hanreich@proxmox.com
2026-02-16 20:19:56 +01:00
.cargo move .cargo/config to .cargo/config.toml 2024-06-20 12:32:19 +02:00
debian bump version to 1.2.1 2025-11-17 16:29:36 +01:00
proxmox-firewall firewall: fix ipset lookup for auto-generated ipam ipsets 2026-02-16 20:19:56 +01:00
proxmox-nftables nftables: add support for auto-merge set option 2025-10-04 14:55:47 +02:00
.gitignore firewall: add integration test 2024-04-18 21:47:21 +02:00
Cargo.toml update proxmox-ve-config to 0.4.6 2025-11-17 16:29:36 +01:00
defines.mk firewall: add files for debian packaging 2024-04-18 21:47:11 +02:00
Makefile make: re-use same cargo args as build to avoid duplicate compilation 2025-10-04 14:55:47 +02:00