Patching firewall rules with place_before #223

iliakonnov · 2023-05-30T08:18:09Z

Describe the bug
When running terraform apply

Terraform used the selected providers to generate the following execution plan. Resource actions are indicated with the following symbols:
  ~ update in-place

Terraform will perform the following actions:

  # routeros_firewall_filter.allow-internal-routing[0] will be updated in-place
  ~ resource "routeros_firewall_filter" "allow-internal-routing" {
      ~ action               = "reject" -> "accept"
        id                   = "*32"
        # (12 unchanged attributes hidden)
    }

Plan: 0 to add, 1 to change, 0 to destroy.

routeros_firewall_filter.allow-internal-routing[0]: Modifying... [id=*32]
╷
│ Error: PATCH 'https://127.0.0.1:8443/rest/ip/firewall/filter/*32' returned response code: 400, message: 'Bad Request', details: 'unknown parameter place-before'
│
│   with routeros_firewall_filter.allow-internal-routing[0],
│   on firewall-filter-forward.tf line 23, in resource "routeros_firewall_filter" "allow-internal-routing":
│   23: resource "routeros_firewall_filter" "allow-internal-routing" {
│
╵

To Reproduce
Before:

resource "routeros_firewall_filter" "allow-internal-routing" {
  action       = "reject"  # <-
  chain        = "forward"
  src_address  = "172.24.1.0/24"
  dst_address  = "172.24.1.0/24"
  place_before = routeros_firewall_filter.reject-internal-routing.id
}
resource "routeros_firewall_filter" "reject-internal-routing" {
  action       = "drop"
  chain        = "forward"
}

After:

resource "routeros_firewall_filter" "allow-internal-routing" {
  action       = "accept"  # <- changed to accept
  chain        = "forward"
  src_address  = "172.24.1.0/24"
  dst_address  = "172.24.1.0/24"
  place_before = routeros_firewall_filter.reject-internal-routing.id
}
resource "routeros_firewall_filter" "reject-internal-routing" {
  action       = "drop"
  chain        = "forward"
}

Expected behavior
New configuration applied successfully.

The text was updated successfully, but these errors were encountered:

Fixes #223 + Mangle + NAT

vaerh · 2023-05-30T17:43:37Z

Please test the release on your dataset and give me feedback.

vaerh · 2023-05-30T17:44:03Z

🎉 This issue has been resolved in version 1.10.4 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀

iliakonnov · 2023-05-30T20:06:08Z

Everything looks great now!

iliakonnov added the bug Something isn't working label May 30, 2023

iliakonnov changed the title ~~Patching firewall rules~~ Patching firewall rules with place_before May 30, 2023

vaerh self-assigned this May 30, 2023

vaerh added a commit that referenced this issue May 30, 2023

fix: Patching firewall rules with place_before

bd15b99

Fixes #223 + Mangle + NAT

vaerh mentioned this issue May 30, 2023

fix: Patching firewall rules with place_before #224

Merged

vaerh closed this as completed in #224 May 30, 2023

vaerh added a commit that referenced this issue May 30, 2023

fix: Patching firewall rules with place_before (#224)

5ef738e

Fixes #223 + Mangle + NAT

vaerh added the released label May 30, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Patching firewall rules with place_before #223

Patching firewall rules with place_before #223

iliakonnov commented May 30, 2023 •

edited

Loading

vaerh commented May 30, 2023

vaerh commented May 30, 2023

iliakonnov commented May 30, 2023

Patching firewall rules with place_before #223

Patching firewall rules with place_before #223

Comments

iliakonnov commented May 30, 2023 • edited Loading

vaerh commented May 30, 2023

vaerh commented May 30, 2023

iliakonnov commented May 30, 2023

iliakonnov commented May 30, 2023 •

edited

Loading