The firewall3 assigns zone sometimes wrong when pppd is stopped
My config:
- port0: "wan" has attached another router and does double-nat, gets private ip, zone "wan" (unsecure)
- port1+port2 = br-avm. there are different dsl modems, zone "avm" (jail, no routing)
- if "dsl" ist started, pppd creates pppoe-dsl - zone "wan" (unsecure)
- port3+4: local network br-lan
firewall3 assignes interface wrong IF PPPD is not running. This filters some traffic from devices on "br-avm" ports which are allow, as it is considered as zone "wan" which does not allow inbound traffic
luci status
okay, pppd established connection by external modem
OK zone_wan_input all wan * 0.0.0.0/0 0.0.0.0/0 - -
>> zone_wan_input all pppoe-dsl * 0.0.0.0/0 0.0.0.0/0 - -
OK zone_avm_input all br-avm * 0.0.0.0/0 0.0.0.0/0 - -
bad, pppd stopped. pppoe-dsl dropped its zone to br-avm unexpected until next pppd start
OK zone_wan_input all wan * 0.0.0.0/0 0.0.0.0/0 - -
>> zone_wan_input all br-avm * 0.0.0.0/0 0.0.0.0/0 - -
OK zone_avm_input all br-avm * 0.0.0.0/0 0.0.0.0/0 - -
I "fixed" this by a custom rule which RETURNs on wrong device.