Community discussions

 
mikruser
Member
Member
Topic Author
Posts: 385
Joined: Wed Jan 16, 2013 6:28 pm

Upgrading to latest ROS "destroy" some firewall rules

Thu Oct 06, 2016 12:43 pm

Hello,

All my configs have 4 rules:
accept for Connection State = established
accept for Connection State = related
(for input and forward chains respectively)

after upgrade to latest ROS (for example 6.33.1 -> 6.37.1), I discovered that these rules now without any "Connection State" value!
now its simply "accept all input" and "accept all forward"!
this is a serious security breach!
do not ask me why it is necessary.
 
thomsen
just joined
Posts: 21
Joined: Wed Sep 28, 2016 10:50 am
Location: Russia, Moscow

Re: Upgrading to latest ROS "destroy" some firewall rules

Fri Oct 28, 2016 10:48 am

Hello,

All my configs have 4 rules:
accept for Connection State = established
accept for Connection State = related
(for input and forward chains respectively)

after upgrade to latest ROS (for example 6.33.1 -> 6.37.1), I discovered that these rules now without any "Connection State" value!
now its simply "accept all input" and "accept all forward"!
this is a serious security breach!
The same situation. After upgrade old ROS (6.34 and less) to 6.37.1 - related and established box's were unchecked.

Who is online

Users browsing this forum: No registered users and 68 guests