So I have a CRS where port 1 is the gateway and ports 2-24 are all one switch group. I am cleaning up a rule set and found:
ros code
add chain=forward comment="Private Ranges" dst-address-list=PrivateRanges \ in-interface=!ether01-gateway out-interface=!ether01-gateway \ src-address-list=PrivateRangesPrivateRanges has only 10.0.0.0/24 in it...
I cannot for the life of me figure out what this rule would match... I could see it matching if PrivateRanges had more than one range in it, but not without that. Can anyone else see something that I am missing?