To reproduce:
set firewall name FOO default-action 'accept' set firewall name FOO rule 10 action 'accept' set firewall name FOO rule 10 destination port '22' set firewall name FOO rule 10 protocol 'tcp' set firewall name FOO rule 20 action 'accept' set firewall name FOO rule 20 protocol 'icmp' set firewall name FOO rule 30 action 'accept' set firewall name FOO rule 30 protocol 'tcp_udp' set firewall name FOO rule 30 source port '53' set interfaces ethernet eth0 firewall local name 'FOO'
Show firewall
vyos@r4:~$ show firewall ----------------------------- Rulesets Information ----------------------------- -------------------------------------------------------------------------------- IPv4 Firewall "FOO": Active on (eth0,LOCAL) rule action proto packets bytes ---- ------ ----- ------- ----- 10 accept tcp 94 6324 condition - saddr 0.0.0.0/0 daddr 0.0.0.0/0 FOO-10 */ 20 accept icmp 0 0 condition - saddr 0.0.0.0/0 daddr 0.0.0.0/0 30 accept tcp_udp 0 0 condition - saddr 0.0.0.0/0 daddr 0.0.0.0/0 FOO-30 */ splice() offset past end of array at /opt/vyatta/bin/vyatta-show-firewall.pl line 356. Use of uninitialized value in concatenation (.) or string at /opt/vyatta/bin/vyatta-show-firewall.pl line 368. Use of uninitialized value in concatenation (.) or string at /opt/vyatta/bin/vyatta-show-firewall.pl line 369. Use of uninitialized value $string_words_part1[3] in string at /opt/vyatta/bin/vyatta-show-firewall.pl line 400. Use of uninitialized value $string_words_part1[0] in string at /opt/vyatta/bin/vyatta-show-firewall.pl line 400. Use of uninitialized value $string_words_part1[1] in string at /opt/vyatta/bin/vyatta-show-firewall.pl line 400. 10000 accept condition - saddr daddr vyos@r4:~$