Firewall `recent` seems to block all requests Bug even present

WebToor · June 14, 2023, 12:31pm

Recent configuration bug firewall rule set seems to be present.

Do you confirm ?

topic related :
Firewall recent seems to block all requests - General questions - VyOS Forums

Version:          VyOS 1.4-rolling-202306140317
Release train:    current

Built by:         autobuild@vyos.net
Built on:         Wed 14 Jun 2023 03:17 UTC
Build UUID:       d7abf10b-50ee-46ac-8b92-dacefce2ff1f
Build commit ID:  dd194c6e8024e1

Architecture:     x86_64
Boot via:         installed image
System type:      VMware guest

Hardware vendor:  VMware, Inc.
Hardware model:   VMware Virtual Platform
Hardware S/N:     VMware-42 18 76 95 aa df 5c 16-0c 8c 61 1d 1b 77 56 2e
Hardware UUID:    95761842-dfaa-165c-0c8c-611d1b77562e

Copyright:        VyOS maintainers and contributors

Netboy3 · June 14, 2023, 3:35pm

Can you provide additional details of what did you try and your config that didn’t work? The related topic you listed above was an old bug that was resolved a long time ago. I’ve also just tried the config there with the recent keyword and it works just fine.

WebToor · June 14, 2023, 3:45pm

Can you share you value count & time please.

in my case
count 5
time second

Netboy3 · June 14, 2023, 3:56pm

        rule 30 {
            action reject
            destination {
                port 22
            }
            log enable
            protocol tcp
            recent {
                count 4
                time minute
            }
            state {
                new enable
            }
        }

Don’t forget to use the state limit, or else this reject will trigger on every received TCP/22 incoming packet.