When you create and commit a firewall zone that does not have an interface assigned will cause a Python KeyError: 'member' exception. Steps to reproduce:
vyos@vyos# set firewall zone BUG [edit] vyos@vyos# commit
Will cause the following exception:
[ firewall ]
Traceback (most recent call last):
File "/usr/libexec/vyos/services/vyos-configd", line 143, in run_script
c = script.get_config(config)
^^^^^^^^^^^^^^^^^^^^^^^^^
File "/usr/libexec/vyos//conf_mode/firewall.py", line 146, in get_config
if 'vrf' in local_zone_conf['member']:
~~~~~~~~~~~~~~~^^^^^^^^^^
KeyError: 'member'
[[firewall]] failed
Commit failed
[edit]
vyos@vyos#It should not cause a KeyError, for example in VyOS 1.4 it would handle it more gracefully:
Zone "BUG" has no interfaces and is not the local zone [[firewall]] failed Commit failed