Page MenuHomeVyOS Platform

NAT does not work with network-groups
Closed, ResolvedPublicBUG

Description

It is not possible to configure NAT rules with network-groups. For example:

set firewall group network-group NG1 network '192.0.2.32/27'
set nat source rule 110 source group network-group NG1
set nat source rule 110 translation address '192.0.2.248/32'
[edit]
vyos@vyos# commit

Configuration file errors encountered!

[[nat]] failed

Details

Version
1.5-rolling-202403011733, 1.4-rolling-202403010309
Is it a breaking change?
Perfectly compatible
Issue type
Bug (incorrect behavior)

Event Timeline

zsdc changed the task status from Open to Confirmed.
zsdc assigned this task to n.fort.
zsdc triaged this task as Urgent! priority.
zsdc edited a custom field.
n.fort changed the task status from Confirmed to In progress.Mar 4 2024, 11:37 AM
n.fort changed the task status from In progress to Needs testing.Mar 4 2024, 2:02 PM
Viacheslav moved this task from Open to Finished on the VyOS 1.4 Sagitta board.