opnsense
IPFW disable after applying any rule in web
Important notices
Before you add a new report, we ask you kindly to acknowledge the following:
- [x] I have read the contributing guide lines at https://github.com/opnsense/core/blob/master/CONTRIBUTING.md
- [x] I am convinced that my issue is new after having checked both open and closed issues at https://github.com/opnsense/core/issues?q=is%3Aissue
Describe the bug
When editing and saving a rule in NAT -> Port Forward, IPFW is disabled. I use IPFW for my own needs and would like to avoid restarting it if possible.
To Reproduce
- Start ipfw
- Edit and apply any rule in web
- Ipfw will be disabled
Environment
OPNsense 25.7.7_4 (amd64). Proxmox VM
ipfw is used on our end as well (for the traffic shaper), so that's a scenario we currently can't support without spending valuable resources better used elsewhere.
@AdSchellevis
I looked into the issue a bit more:
If traffic shaper is not enabled, then applying rules will disable ipfw.
If traffic shaper is enabled, then when applying rules, custom (my) ipfw rules will be reset to default.
@AdSchellevis
I'm not a very advanced FreeBSD user. Could you please give me some tips or point me to some articles that might help me solve this problem? I need to save the rules I added
I can point you where to find the ipfw commands, but our situation is not going to change as it has impact on others and this simply isn't a supported use-case.
https://github.com/opnsense/core/blob/e3714d3f4373030120d2905c6c3396b0119d3271/src/etc/inc/filter.inc#L174-L179