vlan@str-bras3# set zone-policy zone test interface ppp+
[edit]
vlan@str-bras3# commit
[ zone-policy zone test interface ppp+ ]
interface ppp+ does not exist on system
[edit]
vlan@str-bras3#
It commits anyway, even if ppp is not present in the system yet.
Don’t think that it is an issue. Check please work on the firewall in the your scheme/configuration.
Whilst slightly deviating from your zone based firewalling request… You can potentially use radius and use per interface acl’s…I’d like to know how to do this too!
Traditionally acl’s are assigned with radius attribute Filter-Id or similar. This isnt the case in vyos as for some reason accel-ppp has decided Filter-Id attribute is a speed shaping attribute rather than an acl application.