[Bug 578787] New: firewall: validate interface name when attaching it to zone
http://bugzilla.novell.com/show_bug.cgi?id=578787 http://bugzilla.novell.com/show_bug.cgi?id=578787#c0 Summary: firewall: validate interface name when attaching it to zone Classification: openSUSE Product: openSUSE 11.2 Version: Final Platform: x86-64 OS/Version: Other Status: NEW Severity: Enhancement Priority: P5 - None Component: YaST2 AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: bluedzins@wp.pl QAContact: jsrain@novell.com Found By: --- Blocker: --- Currently it works like this: 1. I set up zones, no complains 2. I try to save the settings, now all of the sudden interface names are validated This workflow is tiresome, please, when user define for example eth0 is for internal zone, _immediately_ show it is unknown interface, not in very last step, when user is about to save settings. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=578787 http://bugzilla.novell.com/show_bug.cgi?id=578787#c yang xiaoyu <xyyang@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |xyyang@novell.com AssignedTo|bnc-team-screening@forge.pr |locilka@novell.com |ovo.novell.com | -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=578787 http://bugzilla.novell.com/show_bug.cgi?id=578787#c1 Lukas Ocilka <locilka@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution| |DUPLICATE --- Comment #1 from Lukas Ocilka <locilka@novell.com> 2010-02-11 09:44:55 UTC --- . *** This bug has been marked as a duplicate of bug 578789 *** http://bugzilla.novell.com/show_bug.cgi?id=578789 -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=578787 http://bugzilla.novell.com/show_bug.cgi?id=578787#c2 Maciej Pilichowski <bluedzins@wp.pl> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED Resolution|DUPLICATE | --- Comment #2 from Maciej Pilichowski <bluedzins@wp.pl> 2010-02-11 16:52:52 UTC --- What is relevance with the other bug except for the poster and module (firewall)? Validating should occur just after user entered the interface names. It has nothing to do _what_ she/he entered. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=578787 http://bugzilla.novell.com/show_bug.cgi?id=578787#c3 Lukas Ocilka <locilka@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|locilka@novell.com |mzugec@novell.com --- Comment #3 from Lukas Ocilka <locilka@novell.com> 2010-04-07 08:32:56 UTC --- There's no reason for firewall to validate input it gets from network modules (list of network interfaces). IMO network should check the interfaces before returning them to firewall. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=578787 http://bugzilla.novell.com/show_bug.cgi?id=578787#c4 Michal Zugec <mzugec@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|REOPENED |NEEDINFO InfoProvider| |bluedzins@wp.pl --- Comment #4 from Michal Zugec <mzugec@novell.com> 2010-04-07 11:20:12 UTC --- Maciej, I suppose you're using NetworkManager, which uses it's own configuration format. To "add" interface into firewall, try just "touch /etc/sysconfig/network/ifcfg-eth0" or start "yast2 lan" and create configuration for eth0. Does it works for you? -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=578787 http://bugzilla.novell.com/show_bug.cgi?id=578787#c6 Maciej Pilichowski <bluedzins@wp.pl> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |REOPENED InfoProvider|bluedzins@wp.pl | --- Comment #6 from Maciej Pilichowski <bluedzins@wp.pl> 2010-04-07 15:09:03 UTC --- Thank you for the tip. This workaround works and I also confirm it is KNM related, because once I turn it off, I can change the zone directly and the interface is recognized. Just in case, remark -- this report is about changing validation "point", not about changing validation algorithm. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=578787 https://bugzilla.novell.com/show_bug.cgi?id=578787#c7 Lukas Ocilka <locilka@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|REOPENED |NEEDINFO InfoProvider| |mfilka@suse.com --- Comment #7 from Lukas Ocilka <locilka@suse.com> 2013-04-16 11:54:43 UTC --- Michal, is there any Network*::*() function I could you to get list of network devices instead of interfaces? See comment #5. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=578787 https://bugzilla.novell.com/show_bug.cgi?id=578787#c8 Lukas Ocilka <locilka@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |REOPENED CC| |locilka@suse.com InfoProvider|mfilka@suse.com | AssignedTo|locilka@suse.com |mfilka@suse.com --- Comment #8 from Lukas Ocilka <locilka@suse.com> 2013-04-18 15:19:21 UTC --- Sounds like task for Michal. Please reassign if you have some function firewall could call or simply fix it in firewall as well :) ;) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com