Networks in Firewall Group

Post Reply
hardwareRVR
Posts: 11
Joined: September 26th, 2017, 7:56 am

Networks in Firewall Group

Post by hardwareRVR » October 30th, 2017, 9:55 am

Hello,
I want to create a network in the firewall group to use it in firewall rules instead to write the ip address in the rule.
The network is 192.168.0.240 with netmask 255.255.255.240 that is the server zone, but IpFire give me an error and says "This is the RED subnet".
If i use as mask 255.255.255.248 all ok, why ?
Obvously the RED inteface have a public IP addresses with the same mask (16 public IP) non a 192.168.0.x IP.

Regards
Andrea T.

User avatar
Deepcuts
Posts: 461
Joined: March 1st, 2016, 3:18 pm
Location: Romania

Re: Networks in Firewall Group

Post by Deepcuts » November 1st, 2017, 10:02 am

192.168.0.X is assigned by iana.org as a private subnet. See https://tools.ietf.org/html/rfc1918
So your RED interface does NOT have a public IP, if I understood your post correctly.
Image
Image

FloSchn
Posts: 33
Joined: August 3rd, 2015, 8:57 pm

Re: Networks in Firewall Group

Post by FloSchn » November 7th, 2017, 3:47 pm

Hi this is a current bug in IpFire. you can create networks that have the same subnet mast as green or red. somehow the check is broken and it's only checking the subnet, not the actual ips.

viewtopic.php?f=27&t=19717
viewtopic.php?p=111246#p111246

regards
Image

Image

Image

Post Reply