Open
Description
pcn-firewall bug
The pcn-firewall did not behave as expected
To Reproduce
Steps to reproduce the behavior:
- create a firewall cube
- attach to my network interface
- set the cube's ingress and egress drop all by default
At this time, all traffic dropped, I could NOT ping and ssh to my machine as I expected. Then I add the following rules:
- polycubectl myFW chain ingress append dport=22 action=forward
- polycubectl myFW chain egress append sport=22 action=forward
My expectation is only to allow port 22 connection (which is ssh). However, after adding the above rules, I am able to ping the machine (ping 10.0.0.238) as well.
After I remove the above rules, all traffic is dropped again as expected.
Any idea of it? I’m not sure that is the behavior of the pcn-firewal or it is a bug. Please help me on that (edited)
Please tell us about your environment:
- OS details:
DISTRIB_ID=Ubuntu
DISTRIB_RELEASE=18.04
DISTRIB_CODENAME=bionic
DISTRIB_DESCRIPTION="Ubuntu 18.04.5 LTS"
NAME="Ubuntu"
VERSION="18.04.5 LTS (Bionic Beaver)"
ID=ubuntu
ID_LIKE=debian
PRETTY_NAME="Ubuntu 18.04.5 LTS"
VERSION_ID="18.04"
HOME_URL="https://www.ubuntu.com/"
SUPPORT_URL="https://help.ubuntu.com/"
BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/"
PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy"
VERSION_CODENAME=bionic
UBUNTU_CODENAME=bionic
- Kernel details:
Linux fangjia 5.4.0-47-generic #51~18.04.1-Ubuntu SMP Sat Sep 5 14:35:50 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux - Polycube Version:
v0.9.0+